CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2024-35134 – IBM Analytics Content Hub information disclosure
https://notcve.org/view.php?id=CVE-2024-35134
25 Jan 2025 — IBM Analytics Content Hub 2.0 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. • https://www.ibm.com/support/pages/node/7172787 • CWE-209: Generation of Error Message Containing Sensitive Information •
CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0CVE-2023-38271 – IBM Cloud Pak System information disclosure
https://notcve.org/view.php?id=CVE-2023-38271
25 Jan 2025 — IBM Cloud Pak System 2.3.3.0, 2.3.3.3, 2.3.3.3 iFix1, 2.3.3.4, 2.3.3.5, 2.3.3.6, 2.3.3.6 iFix1, 2.3.3.6 iFix2, 2.3.3.7, and 2.3.3.7 iFix1 could allow an authenticated user to obtain sensitive information from log files. IBM Cloud Pak System 2.3.3.0, 2.3.3.3, 2.3.3.3 iFix1, 2.3.3.4, 2.3.3.5, 2.3.3.6, 2.3.3.6 iFix1, 2.3.3.6 iFix2, 2.3.3.7, and 2.3.3.7 iFix1 could allow an authenticated user to obtain sensitive information from log files. • https://www.ibm.com/support/pages/node/7159533 • CWE-532: Insertion of Sensitive Information into Log File •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2023-38713 – IBM Cloud Pak System information disclosure
https://notcve.org/view.php?id=CVE-2023-38713
25 Jan 2025 — IBM Cloud Pak System 2.3.3.0, 2.3.3.3, 2.3.3.3 iFix1, 2.3.3.4, 2.3.3.5, 2.3.3.6, 2.3.3.6 iFix1, 2.3.3.6 iFix2, 2.3.3.7, and 2.3.3.7 iFix1 could disclose sensitive information about the system that could aid in further attacks against the system. IBM Cloud Pak System 2.3.3.0, 2.3.3.3, 2.3.3.3 iFix1, 2.3.3.4, 2.3.3.5, 2.3.3.6, 2.3.3.6 iFix1, 2.3.3.6 iFix2, 2.3.3.7, and 2.3.3.7 iFix1 could disclose sensitive information about the system that could aid in further attacks against the system. • https://www.ibm.com/support/pages/node/7159533 • CWE-209: Generation of Error Message Containing Sensitive Information •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2023-38714 – IBM Cloud Pak System information disclosure
https://notcve.org/view.php?id=CVE-2023-38714
25 Jan 2025 — IBM Cloud Pak System 2.3.3.0, 2.3.3.3, 2.3.3.3 iFix1, 2.3.3.4, 2.3.3.5, 2.3.3.6, 2.3.3.6 iFix1, 2.3.3.6 iFix2, 2.3.3.7, and 2.3.3.7 iFix1 could disclose sensitive information about the system that could aid in further attacks against the system. IBM Cloud Pak System 2.3.3.0, 2.3.3.3, 2.3.3.3 iFix1, 2.3.3.4, 2.3.3.5, 2.3.3.6, 2.3.3.6 iFix1, 2.3.3.6 iFix2, 2.3.3.7, and 2.3.3.7 iFix1 could disclose sensitive information about the system that could aid in further attacks against the system. • https://www.ibm.com/support/pages/node/7159533 • CWE-209: Generation of Error Message Containing Sensitive Information •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2023-38013 – IBM Cloud Pak System information disclosure
https://notcve.org/view.php?id=CVE-2023-38013
25 Jan 2025 — IBM Cloud Pak System 2.3.3.0, 2.3.3.3, 2.3.3.3 iFix1, 2.3.3.4, 2.3.3.5, 2.3.3.6, 2.3.3.6 iFix1, 2.3.3.6 iFix2, 2.3.3.7, and 2.3.3.7 iFix1 could disclose sensitive information in HTTP responses that could aid in further attacks against the system. • https://www.ibm.com/support/pages/node/7159533 • CWE-201: Insertion of Sensitive Information Into Sent Data •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2023-38716 – IBM Cloud Pak System information disclosure
https://notcve.org/view.php?id=CVE-2023-38716
25 Jan 2025 — IBM Cloud Pak System 2.3.3.6, 2.3.36 iFix1, 2.3.3.6 iFix2, 2.3.3.7, 2.3.3.7 iFix1, and 2.3.4.0 could disclose sensitive information about the system that could aid in further attacks against the system. • https://www.ibm.com/support/pages/node/7148474 • CWE-209: Generation of Error Message Containing Sensitive Information •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2024-35114 – IBM Control Center information disclosure
https://notcve.org/view.php?id=CVE-2024-35114
25 Jan 2025 — IBM Control Center 6.2.1 and 6.3.1 could allow a remote attacker to enumerate usernames due to an observable discrepancy between login attempts. • https://www.ibm.com/support/pages/node/7174842 • CWE-204: Observable Response Discrepancy •
CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0CVE-2024-35113 – IBM Control Center information disclosure
https://notcve.org/view.php?id=CVE-2024-35113
25 Jan 2025 — IBM Control Center 6.2.1 and 6.3.1 could allow an authenticated user to obtain sensitive information exposed through a directory listing. • https://www.ibm.com/support/pages/node/7174796 • CWE-548: Exposure of Information Through Directory Listing •
CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0CVE-2024-35111 – IBM Control Center information disclosure
https://notcve.org/view.php?id=CVE-2024-35111
25 Jan 2025 — IBM Control Center 6.2.1 and 6.3.1 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. • https://www.ibm.com/support/pages/node/7174806 • CWE-209: Generation of Error Message Containing Sensitive Information •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2024-40706 – IBM InfoSphere Information Server information disclosure
https://notcve.org/view.php?id=CVE-2024-40706
24 Jan 2025 — IBM InfoSphere Information Server 11.7 could allow a remote user to obtain sensitive version information that could aid in further attacks against the system. • https://www.ibm.com/support/pages/node/7169826 • CWE-497: Exposure of Sensitive System Information to an Unauthorized Control Sphere •