CVE-2024-39732

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2024-39732
IBM Datacap Navigator 9.1.5, 9.1.6, 9.1.7, 9.1.8, and 9.1.9 temporarily stores data from different environments that could be obtained by a malicious user. IBM X-Force ID: 295791.

7.5 /10

CVSS v3.0 : HIGH

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

References
Link Resource
https://www.ibm.com/support/pages/node/7160185 Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/295791 Not Applicable
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:ibm:datacap:9.1.7:*:*:*:*:*:*:*
cpe:2.3:a:ibm:datacap:9.1.5:*:*:*:*:*:*:*
cpe:2.3:a:ibm:datacap:9.1.6:*:*:*:*:*:*:*
cpe:2.3:a:ibm:datacap:9.1.8:*:*:*:*:*:*:*
cpe:2.3:a:ibm:datacap:9.1.9:*:*:*:*:*:*:*
History

18 Sep 2024, 13:15

Type Values Removed Values Added
CVSS v2 : unknown
v3 : unknown 		v2 : unknown
v3 : 7.5
First Time Ibm datacap
Ibm
CWE CWE-316 CWE-312
CPE cpe:2.3:a:ibm:datacap:9.1.7:*:*:*:*:*:*:*
cpe:2.3:a:ibm:datacap:9.1.5:*:*:*:*:*:*:*
cpe:2.3:a:ibm:datacap:9.1.6:*:*:*:*:*:*:*
cpe:2.3:a:ibm:datacap:9.1.8:*:*:*:*:*:*:*
cpe:2.3:a:ibm:datacap:9.1.9:*:*:*:*:*:*:*
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/295791 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/295791 - Not Applicable
References () https://www.ibm.com/support/pages/node/7160185 - () https://www.ibm.com/support/pages/node/7160185 - Vendor Advisory

14 Jul 2024, 13:15

Type Values Removed Values Added
New CVE
Information

Published : 2024-07-14 13:15

Updated : 2024-09-18 13:15

NVD link : CVE-2024-39732

Mitre link : CVE-2024-39732

JSON object : View

Products Affected

ibm

  • datacap
CWE
CWE-312

Cleartext Storage of Sensitive Information