4.3

CVE-2024-39729

IBM Datacap Navigator information disclosure

IBM Datacap Navigator 9.1.5, 9.1.6, 9.1.7, 9.1.8, and 9.1.9 could allow an authenticated user to obtain sensitive information from source code that could be used in further attacks against the system.  IBM X-Force ID:  295968.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
IbmDatacap Version9.1.5
IbmDatacap Version9.1.6
IbmDatacap Version9.1.7
IbmDatacap Version9.1.8
IbmDatacap Version9.1.9
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.41% 0.324
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 4.3 2.8 1.4
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
psirt@us.ibm.com 4.3 2.8 1.4
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
CWE-540 Inclusion of Sensitive Information in Source Code

Source code on a web server or repository often contains sensitive information and should generally not be accessible to users.

https://www.ibm.com/support/pages/node/7160185
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/295968
Vendor Advisory
VDB Entry