330 matches found
CVE-2024-56810
IBM EntireX 11.1 could allow a local user to obtain sensitive information when a detailed technical error message is returned. This information could be used in further attacks against the system...
CVE-2024-56493
IBM EntireX 11.1 could allow a local user to obtain sensitive information when a detailed technical error message is returned. This information could be used in further attacks against the system...
CVE-2024-56810 IBM EntireX information disclosure
IBM EntireX 11.1 could allow a local user to obtain sensitive information when a detailed technical error message is returned. This information could be used in further attacks against the system...
CVE-2024-56496 IBM EntireX information disclosure
IBM EntireX 11.1 could allow a local user to obtain sensitive information when a detailed technical error message is returned. This information could be used in further attacks against the system...
CVE-2024-56495 IBM EntireX information disclosure
IBM EntireX 11.1 could allow a local user to obtain sensitive information when a detailed technical error message is returned. This information could be used in further attacks against the system...
CVE-2024-56811 IBM EntireX information disclosure
IBM EntireX 11.1 could allow a local user to obtain sensitive information when a detailed technical error message is returned. This information could be used in further attacks against the system...
CVE-2024-56811 IBM EntireX information disclosure
IBM EntireX 11.1 could allow a local user to obtain sensitive information when a detailed technical error message is returned. This information could be used in further attacks against the system...
CVE-2024-56811
CVE-2024-56811 affects IBM EntireX 11.1. An information-disclosure vulnerability allows a local user to obtain sensitive data by triggering a detailed technical error message returned by the system. The issue is tied to the error message contents, enabling information leakage that could assist fu...
CVE-2024-56493 IBM EntireX information disclosure
IBM EntireX 11.1 could allow a local user to obtain sensitive information when a detailed technical error message is returned. This information could be used in further attacks against the system...
CVE-2024-56812 IBM EntireX information disclosure
IBM EntireX 11.1 could allow a local user to obtain sensitive information when a detailed technical error message is returned. This information could be used in further attacks against the system...
CVE-2024-56812
IBM EntireX 11.1 contains a local-information-disclosure flaw where a detailed error message can reveal sensitive data to a local user. The IBM Security Bulletin for CVE-2024-56812 specifies the root cause as error message leakage and lists IBM EntireX 11.1 as affected. Remediation guidance in th...
IBM EntireX 安全漏洞
IBM EntireX is a versatile middleware solution from International Business Machines IBM designed to facilitate seamless integration between core enterprise applications and modern applications. A security vulnerability exists in IBM EntireX version 11.1 that originates from the return of a Detail...
CVE-2024-45659
IBM Security Verify Access Appliance and Container 10.0.0 through 10.0.8 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned. This information could be used in further attacks against the system...
CVE-2024-56467 IBM EntireX information disclosure
IBM EntireX 11.1 could allow a local user to obtain sensitive information when a detailed technical error message is returned. This information could be used in further attacks against the system...
CVE-2024-49798
IBM ApplinX 11.1 is affected by CVE-2024-49798: a vulnerability where a detailed technical error message returned in the browser could disclose sensitive information, potentially aiding further attacks. The underlying issue is CWE-209 (Generation of Error Message Containing Sensitive Information)...
CVE-2024-45658 IBM Security Verify Access information disclosure
IBM Security Verify Access Appliance and Container 10.0.0 through 10.0.8 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned. This information could be used in further attacks against the system...
CVE-2024-35134
IBM Analytics Content Hub 2.0 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system...
CVE-2024-35111
IBM Control Center 6.2.1 and 6.3.1 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system...
CVE-2024-35134 IBM Analytics Content Hub information disclosure
IBM Analytics Content Hub 2.0 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system...
CVE-2024-35111 IBM Control Center information disclosure
IBM Control Center 6.2.1 and 6.3.1 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system...