Lucene search
K

254 matches found

Vulnrichment
Vulnrichment
added 2025/02/06 8:30 p.m.6 views

CVE-2024-56467 IBM EntireX information disclosure

IBM EntireX 11.1 could allow a local user to obtain sensitive information when a detailed technical error message is returned. This information could be used in further attacks against the system...

3.3CVSS3.4AI score0.00142EPSS
Exploits0References1
CVE
CVE
added 2025/02/05 11:50 p.m.63 views

CVE-2024-49798

IBM ApplinX 11.1 is affected by CVE-2024-49798: a vulnerability where a detailed technical error message returned in the browser could disclose sensitive information, potentially aiding further attacks. The underlying issue is CWE-209 (Generation of Error Message Containing Sensitive Information)...

4.3CVSS4.2AI score0.00338EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/02/04 8:37 p.m.8 views

CVE-2024-45658 IBM Security Verify Access information disclosure

IBM Security Verify Access Appliance and Container 10.0.0 through 10.0.8 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned. This information could be used in further attacks against the system...

2.7CVSS3.2AI score0.00415EPSS
Exploits0References1
NVD
NVD
added 2025/01/25 2:15 p.m.15 views

CVE-2024-35134

IBM Analytics Content Hub 2.0 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system...

5.3CVSS0.00359EPSS
Exploits0References1
NVD
NVD
added 2025/01/25 2:15 p.m.14 views

CVE-2024-35111

IBM Control Center 6.2.1 and 6.3.1 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system...

4.3CVSS0.00344EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/01/25 2:5 p.m.20 views

CVE-2024-35134 IBM Analytics Content Hub information disclosure

IBM Analytics Content Hub 2.0 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system...

5.3CVSS0.00359EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/01/25 1:29 p.m.9 views

CVE-2024-35111 IBM Control Center information disclosure

IBM Control Center 6.2.1 and 6.3.1 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system...

4.3CVSS4.3AI score0.00344EPSS
Exploits0References1
CVE
CVE
added 2025/01/14 4:49 p.m.62 views

CVE-2024-52898

CVE-2024-52898 affects IBM MQ web consoles (9.3 LTS, 9.3 CD, 9.4 LTS, 9.4 CD). The flaw stems from generating detailed error messages that disclose sensitive information (CWE-209), allowing a local user to obtain sensitive data. IBM’s security bulletins list the vulnerability within the IBM MQ Co...

6.2CVSS6AI score0.00172EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/01/07 4:7 p.m.12 views

CVE-2022-22363 IBM Cognos Controller information disclosure

IBM Cognos Controller 11.0.0 through 11.0.1 and IBM Controller 11.1.0 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system...

4.3CVSS6.2AI score0.00771EPSS
Exploits0References1
OSV
OSV
added 2025/01/07 12:15 p.m.6 views

CVE-2024-52893

IBM Concert Software 1.0.0, 1.0.1, 1.0.2, 1.0.2.1, and 1.0.3 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system...

5.3CVSS5.2AI score
Exploits0References1
NVD
NVD
added 2025/01/07 12:15 p.m.24 views

CVE-2024-52893

IBM Concert Software 1.0.0, 1.0.1, 1.0.2, 1.0.2.1, and 1.0.3 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system...

5.3CVSS0.00375EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/01/07 12:0 p.m.19 views

CVE-2024-52893 IBM Concert Software information disclosure

IBM Concert Software 1.0.0, 1.0.1, 1.0.2, 1.0.2.1, and 1.0.3 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system...

5.3CVSS0.00375EPSS
Exploits0References1
CVE
CVE
added 2025/01/07 12:0 p.m.66 views

CVE-2024-52893

CVE-2024-52893 affects IBM Concert Software versions 1.0.0, 1.0.1, 1.0.2, 1.0.2.1, and 1.0.3. The issue can allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser, which could be leveraged in subsequent attacks. IBM’s security bu...

5.3CVSS5AI score0.00375EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2025/01/03 3:15 p.m.18 views

CVE-2024-5591

IBM Jazz Foundation 7.0.2, 7.0.3, and 7.1.0 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system...

4.3CVSS0.00344EPSS
Exploits0References1
CNVD
CNVD
added 2024/12/27 12:0 a.m.8 views

IBM Engineering Lifecycle Optimization-Engineering Insights Information Disclosure Vulnerability

IBM Engineering Lifecycle Optimization - Engineering Insights ENI is a collaborative, Web-based application from IBM. An information disclosure vulnerability exists in IBM Engineering Lifecycle Optimization - Engineering Insights. The vulnerability is due to the fact that the affected version cou...

5.3CVSS5.9AI score0.00366EPSS
Exploits0References1
CNVD
CNVD
added 2024/12/20 12:0 a.m.10 views

IBM Security Guardium Key Lifecycle Manager Information Disclosure Vulnerability (CNVD-2025-01796)

IBM Security Guardium Key Lifecycle Manager is an encryption key management tool from International Business Machines IBM. It centralizes, simplifies and automates the key management process. An information disclosure vulnerability exists in IBM Security Guardium Key Lifecycle Manager, which can ...

4.3CVSS5.8AI score0.00453EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/12/19 12:0 a.m.3 views

PT-2024-35475 · Ibm · Ibm Mq

Name of the Vulnerable Software and Affected Versions: IBM MQ versions 9.2 LTS, 9.3 LTS, 9.3 CD, 9.4 LTS, and 9.4 CD Description: The issue allows a remote attacker to obtain sensitive information when a detailed technical error message is returned. This occurs in the web console of the affected...

6.2CVSS5.7AI score0.0027EPSS
Exploits0References8
NVD
NVD
added 2024/08/16 8:15 p.m.19 views

CVE-2023-47728

IBM QRadar Suite Software 1.10.12.0 through 1.10.22.0 and IBM Cloud Pak for Security 1.10.0.0 through 1.10.11.0 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the request. This information could be used in further attacks again...

7.5CVSS0.00458EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/08/16 7:12 p.m.11 views

CVE-2023-47728 IBM QRadar Suite Software information disclosure

IBM QRadar Suite Software 1.10.12.0 through 1.10.22.0 and IBM Cloud Pak for Security 1.10.0.0 through 1.10.11.0 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the request. This information could be used in further attacks again...

6.5CVSS6.1AI score0.00458EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/08/16 7:12 p.m.31 views

CVE-2023-47728 IBM QRadar Suite Software information disclosure

IBM QRadar Suite Software 1.10.12.0 through 1.10.22.0 and IBM Cloud Pak for Security 1.10.0.0 through 1.10.11.0 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the request. This information could be used in further attacks again...

6.5CVSS0.00458EPSS
Exploits0References2
Rows per page
Query Builder