8.8

CVSS3.1

CVE-2024-39750 - IBM Analytics Content Hub buffer overflow

IBM Analytics Content Hub 2.0 is vulnerable to a buffer overflow due to improper return length checking. A remote authenticated attacker could overflow a buffer and execute arbitrary code on the system or cause the server to crash.

๐Ÿ“… Published: Jan. 25, 2025, 2:04 p.m. ๐Ÿ”„ Last Modified: Sept. 29, 2025, 4:15 p.m.

4.3

CVSS3.1

CVE-2023-38271 - IBM Cloud Pak System information disclosure

IBM Cloud Pak System 2.3.3.0, 2.3.3.3, 2.3.3.3 iFix1, 2.3.3.4, 2.3.3.5, 2.3.3.6, 2.3.3.6 iFix1, 2.3.3.6 iFix2, 2.3.3.7, and 2.3.3.7 iFix1ย could allow an authenticated user to obtain sensitive information from log files.

๐Ÿ“… Published: Jan. 25, 2025, 1:57 p.m. ๐Ÿ”„ Last Modified: Aug. 13, 2025, 5:59 p.m.

5.3

CVSS3.1

CVE-2023-38713 - IBM Cloud Pak System information disclosure

IBM Cloud Pak System 2.3.3.0, 2.3.3.3, 2.3.3.3 iFix1, 2.3.3.4, 2.3.3.5, 2.3.3.6, 2.3.3.6 iFix1, 2.3.3.6 iFix2, 2.3.3.7, and 2.3.3.7 iFix1ย could disclose sensitive information about the system that could aid in further attacks against the system.

๐Ÿ“… Published: Jan. 25, 2025, 1:56 p.m. ๐Ÿ”„ Last Modified: Aug. 13, 2025, 5:56 p.m.

5.3

CVSS3.1

CVE-2023-38714 - IBM Cloud Pak System information disclosure

IBM Cloud Pak System 2.3.3.0, 2.3.3.3, 2.3.3.3 iFix1, 2.3.3.4, 2.3.3.5, 2.3.3.6, 2.3.3.6 iFix1, 2.3.3.6 iFix2, 2.3.3.7, and 2.3.3.7 iFix1ย could disclose sensitive information about the system that could aid in further attacks against the system.

๐Ÿ“… Published: Jan. 25, 2025, 1:55 p.m. ๐Ÿ”„ Last Modified: Aug. 13, 2025, 5:54 p.m.

5.3

CVSS3.1

CVE-2023-38013 - IBM Cloud Pak System information disclosure

IBM Cloud Pak System 2.3.3.0, 2.3.3.3, 2.3.3.3 iFix1, 2.3.3.4, 2.3.3.5, 2.3.3.6, 2.3.3.6 iFix1, 2.3.3.6 iFix2, 2.3.3.7, and 2.3.3.7 iFix1 could disclose sensitive information in HTTP responses that could aid in further attacks against the system.

๐Ÿ“… Published: Jan. 25, 2025, 1:55 p.m. ๐Ÿ”„ Last Modified: Aug. 13, 2025, 6:01 p.m.

5.3

CVSS3.1

CVE-2023-38012 - IBM Cloud Pak System directory traversal

IBM Cloud Pak System 2.3.3.6, 2.3.3.6 iFix1, 2.3.3.6 iFix2, 2.3.3.7, 2.3.3.7 iFix1, and 2.3.4.0 could allow a remote attacker to traverse directories on the system. An attacker could send a specially crafted URL request containing "dot dot" sequences (/../) to view arbitrary files on the system.

๐Ÿ“… Published: Jan. 25, 2025, 1:49 p.m. ๐Ÿ”„ Last Modified: Aug. 14, 2025, 1:56 a.m.

5.3

CVSS3.1

CVE-2023-38716 - IBM Cloud Pak System information disclosure

IBM Cloud Pak System 2.3.3.6, 2.3.36 iFix1, 2.3.3.6 iFix2, 2.3.3.7, 2.3.3.7 iFix1, and 2.3.4.0 could disclose sensitive information about the system that could aid in further attacks against the system.

๐Ÿ“… Published: Jan. 25, 2025, 1:48 p.m. ๐Ÿ”„ Last Modified: Aug. 13, 2025, 5:52 p.m.

5.3

CVSS3.1

CVE-2024-35114 - IBM Control Center information disclosure

IBM Control Center 6.2.1 and 6.3.1 could allow a remote attacker to enumerate usernames due to an observable discrepancy between login attempts.

๐Ÿ“… Published: Jan. 25, 2025, 1:33 p.m. ๐Ÿ”„ Last Modified: Nov. 6, 2025, 10:01 p.m.

4.3

CVSS3.1

CVE-2024-35113 - IBM Control Center information disclosure

IBM Control Center 6.2.1 and 6.3.1 could allow an authenticated user to obtain sensitive information exposed through a directory listing.

๐Ÿ“… Published: Jan. 25, 2025, 1:32 p.m. ๐Ÿ”„ Last Modified: Jan. 27, 2025, 5:29 p.m.

5.4

CVSS3.1

CVE-2024-35112 - IBM Control Center cross-site scripting

IBM Control Center 6.2.1 and 6.3.1 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system.

๐Ÿ“… Published: Jan. 25, 2025, 1:31 p.m. ๐Ÿ”„ Last Modified: Jan. 27, 2025, 5:30 p.m.
Total resulsts: 342387
Page 6280 of 34,239
ยซ previous page ยป next page
Filters