CVE-2024-39732

CWE-316CWE-312Cleartext Storage of Sensitive Info3 documents3 sources
Severity
7.5HIGH
EPSS
0.0%
top 85.43%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
IBM Datacap NavigatorIBM Datacap
Timeline
PublishedJul 14

Description

IBM Datacap Navigator 9.1.5, 9.1.6, 9.1.7, 9.1.8, and 9.1.9 temporarily stores data from different environments that could be obtained by a malicious user. IBM X-Force ID: 295791.

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:NExploitability: 0.5 | Impact: 3.6

Affected Packages2 packages

CVEListV5ibm/datacap_navigator9.1.5, 9.1.6, 9.1.7, 9.1.8, 9.1.9
NVDibm/datacap5 versions+4

🔴Vulnerability Details

2
GHSA
GHSA-4cvc-j8gf-mg3g: IBM Datacap Navigator 92024-07-14
CVEList
IBM Datacap Navigator information disclosure2024-07-14
CVE-2024-39732 (HIGH CVSS 7.5) | IBM Datacap Navigator 9.1.5 | cvebase.io