CVE-2024-38327
Unknown
Unknown - Not Provided
BaseFortify
Publication date: 2025-07-10
Last updated on: 2025-07-23
Assigner: IBM Corporation
Description
Description
IBM Analytics Content Hub 2.0, 2.1, 2.2, and 2.3 is vulnerable to information exposure and further attacks due to an exposed JavaScript source map which could assist an attacker to read and debug JavaScript used in the application's API.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| ibm | analytics_content_hub | From 2.0 (inc) to 2.4 (exc) |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-540 | Source code on a web server or repository often contains sensitive information and should generally not be accessible to users. |
| CWE-NVD-CWE-noinfo |
Attack-Flow Graph
AI Powered Q&A
How can this vulnerability impact me? :
The vulnerability can lead to information exposure and enable attackers to better understand and exploit the application's API, which may result in unauthorized access, data breaches, or disruption of service.
Can you explain this vulnerability to me?
This vulnerability in IBM Analytics Content Hub versions 2.0 to 2.3 involves an exposed JavaScript source map. This exposure allows an attacker to read and debug the JavaScript code used in the application's API, potentially revealing sensitive information and aiding further attacks.
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70