Lucene search
HistoryMar 21, 2024 - 2:52 a.m.
CVE-2024-22352
ibm
infosphere
information server
11.7
security
vulnerability
local user
data leakage
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
4.9 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.1%
IBM InfoSphere Information Server 11.7 stores potentially sensitive information in log files that could be read by a local user. IBM X-Force ID: 280361.
Affected configurations
Node
ibminfosphere_information_serverMatch11.7
| Vendor | Product | Version | CPE |
|---|---|---|---|
| ibm | infosphere_information_server | 11.7 | cpe:2.3:a:ibm:infosphere_information_server:11.7:*:*:*:*:*:*:* |
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "InfoSphere Information Server",
"vendor": "IBM",
"versions": [
{
"status": "affected",
"version": "11.7"
}
]
}
]Related
nvd
nvd
CVE-2024-22352
2024-03-21 02:52:02
cnvd
cnvd
IBM InfoSphere Information Server Log Information Disclosure Vulnerability
2024-03-26 00:00:00
ibm
ibm
prion
prion
Information disclosure
2024-03-14 22:49:10
cvelist
cvelist
CVE-2024-22352 IBM InfoSphere Information Server information disclosure
2024-03-05 18:51:20
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
4.9 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.1%
Related for CVE-2024-22352