CVE-2024-37524
Unknown
Unknown - Not Provided
BaseFortify
Publication date: 2025-07-10
Last updated on: 2025-07-23
Assigner: IBM Corporation
Description
Description
IBM Analytics Content Hub 2.0, 2.1, 2.2, and 2.3 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| ibm | analytics_content_hub | From 2.0 (inc) to 2.4 (exc) |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-209 | The product generates an error message that includes sensitive information about its environment, users, or associated data. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability in IBM Analytics Content Hub versions 2.0 to 2.3 allows a remote attacker to obtain sensitive information by causing the application to return a detailed technical error message in the browser.
How can this vulnerability impact me? :
The impact of this vulnerability is that an attacker can gain access to sensitive information, which could potentially be used to further exploit the system or compromise data confidentiality.
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70