← Voltar para CVEs
CVE-2024-38321
MEDIUM5.3
Descricao
IBM Business Automation Workflow 22.0.2, 23.0.1, 23.0.2, and 24.0.0 stores potentially sensitive information in log files under certain situations that could be read by an authenticated user. IBM X-Force ID: 284868.
Detalhes CVE
Pontuacao CVSS v3.15.3
SeveridadeMEDIUM
Vetor CVSSCVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N
Vetor de ataqueNETWORK
ComplexidadeHIGH
Privilegios necessariosLOW
Interacao do usuarioNONE
Publicado8/3/2024
Ultima modificacao9/6/2024
Fontenvd
Avistamentos honeypot0
Produtos afetados
ibm:business_automation_workflow
Fraquezas (CWE)
CWE-532
Referencias
https://exchange.xforce.ibmcloud.com/vulnerabilities/294868(psirt@us.ibm.com)
https://www.ibm.com/support/pages/node/7162334(psirt@us.ibm.com)
Correlacoes IOC
Sem correlacoes registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.