Lucene search
Veracode Vulnerability DatabaseVERACODE:47856HistoryJul 02, 2024 - 7:06 a.m.
Sensitive Information Disclosure
2024-07-0207:06:53
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
6
ibm mq
vulnerability
technical error message
browser
attacker
system
.
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
AI Score
6.1
Confidence
Low
EPSS
0.001
Percentile
19.7%
IBM MQ is vulnerable to Sensitive Information Disclosure. The vulnerability is due to a detailed technical error message being returned in the browser. The attacker can use this information in further attacks against the system.
Related
vulnrichment
vulnrichment
CVE-2024-35156 IBM MQ information disclosure
2024-06-28 18:12:21
cvelist
cvelist
CVE-2024-35156 IBM MQ information disclosure
2024-06-28 18:12:21
nessus
nessus
IBM MQ 9.3 < 9.3.0.20 LTS / 9.3 < 9.4 CD (7158058)
2024-06-27 00:00:00
ibm
ibm
cve
cve
CVE-2024-35156
2024-06-28 19:15:05
nvd
nvd
CVE-2024-35156
2024-06-28 19:15:05
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
AI Score
6.1
Confidence
Low
EPSS
0.001
Percentile
19.7%
Related for VERACODE:47856