CVSS: 5.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-24900
https://notcve.org/view.php?id=CVE-2024-24900
Exploitation may lead to information disclosure and unauthorized access to the system. • https://www.dell.com/support/kbdoc/en-us/000222330/dsa-2024-077-security-update-for-dell-secure-connect-gateway-policy-manager-vulnerabilities • CWE-285: Improper Authorization •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2023-50312 – IBM WebSphere Application Server Liberty information disclosure
https://notcve.org/view.php?id=CVE-2023-50312
IBM WebSphere Application Server Liberty 17.0.0.3 through 24.0.0.2 could provide weaker than expected security for outbound TLS connections caused by a failure to honor user configuration. IBM X-Force ID: 274711. IBM WebSphere Application Server Liberty 17.0.0.3 a 24.0.0.2 podría proporcionar una seguridad más débil de lo esperado para las conexiones TLS salientes causadas por una falla al respetar la configuración del usuario. ID de IBM X-Force: 274711. • https://exchange.xforce.ibmcloud.com/vulnerabilities/274711 https://www.ibm.com/support/pages/node/7125527 • CWE-327: Use of a Broken or Risky Cryptographic Algorithm •
CVSS: 5.3EPSS: 0%CPEs: -EXPL: 0CVE-2023-50324 – IBM Cognos Command Center information disclosure
https://notcve.org/view.php?id=CVE-2023-50324
IBM Cognos Command Center 10.2.4.1 and 10.2.5 exposes details the X-AspNet-Version Response Header that could allow an attacker to obtain information of the application environment to conduct further attacks. IBM X-Force ID: 275038. IBM Cognos Command Center 10.2.4.1 y 10.2.5 expone detalles del encabezado de respuesta X-AspNet-Version que podría permitir a un atacante obtener información del entorno de la aplicación para realizar más ataques. ID de IBM X-Force: 275038. • https://exchange.xforce.ibmcloud.com/vulnerabilities/275038 https://www.ibm.com/support/pages/node/7112504 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 5.1EPSS: 0%CPEs: 2EXPL: 0CVE-2023-50305 – IBM Engineering Requirements Management information disclosure
https://notcve.org/view.php?id=CVE-2023-50305
IBM Engineering Requirements Management DOORS 9.7.2.7 does not require that users should have strong passwords by default, which makes it easier for attackers to compromise user accounts. IBM X-Force ID: 273336. IBM Engineering Requisitos Management DOORS 9.7.2.7 no requiere que los usuarios tengan contraseñas seguras de forma predeterminada, lo que facilita que los atacantes comprometan las cuentas de los usuarios. ID de IBM X-Force: 273336. • https://exchange.xforce.ibmcloud.com/vulnerabilities/273336 https://www.ibm.com/support/pages/node/7124058 • CWE-521: Weak Password Requirements •
CVSS: 3.3EPSS: 0%CPEs: 1EXPL: 0CVE-2024-27333 – Kofax Power PDF GIF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2024-27333
Kofax Power PDF GIF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. ... The issue results from the lack of proper validation of user-supplied data, which can result in a read past the end of an allocated object. ... The issue results from the lack of proper validation of user-supplied data, which can result in a read past the end of an allocated object. • https://www.zerodayinitiative.com/advisories/ZDI-24-216 • CWE-125: Out-of-bounds Read •