CVE-2024-35113

CWE-5483 documents3 sources
Severity
6.5MEDIUM
EPSS
0.1%
top 66.89%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM Control Center
Timeline
PublishedJan 25

Description

IBM Control Center 6.2.1 and 6.3.1 could allow an authenticated user to obtain sensitive information exposed through a directory listing.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:NExploitability: 2.8 | Impact: 1.4

Affected Packages2 packages

CVEListV5ibm/control_center6.2.1, 6.3.1
NVDibm/control_center6.2.1.0, 6.3.1.0+1

🔴Vulnerability Details

2
GHSA
GHSA-vwpm-799j-8hxq: IBM Control Center 62025-01-25
CVEList
IBM Control Center information disclosure2025-01-25
CVE-2024-35113 (MEDIUM CVSS 6.5) | IBM Control Center 6.2.1 and 6.3.1 | cvebase.io