CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2024-35134 – IBM Analytics Content Hub information disclosure
https://notcve.org/view.php?id=CVE-2024-35134
25 Jan 2025 — IBM Analytics Content Hub 2.0 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. • https://www.ibm.com/support/pages/node/7172787 • CWE-209: Generation of Error Message Containing Sensitive Information •
CVSS: 9.0EPSS: 0%CPEs: 1EXPL: 0CVE-2024-39750 – IBM Analytics Content Hub buffer overflow
https://notcve.org/view.php?id=CVE-2024-39750
25 Jan 2025 — IBM Analytics Content Hub 2.0 is vulnerable to a buffer overflow due to improper return length checking. A remote authenticated attacker could overflow a buffer and execute arbitrary code on the system or cause the server to crash. • https://www.ibm.com/support/pages/node/7172787 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •