CVE-2024-39740

CWE-4973 documents3 sources
Severity
5.3MEDIUM
EPSS
0.1%
top 64.89%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
IBM Datacap NavigatorIBM Datacap
Timeline
PublishedJul 15

Description

IBM Datacap Navigator 9.1.5, 9.1.6, 9.1.7, 9.1.8, and 9.1.9 displays version information in HTTP requests that could allow an attacker to gather information for future attacks against the system. IBM X-Force ID: 296009.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:NExploitability: 2.8 | Impact: 1.4

Affected Packages2 packages

CVEListV5ibm/datacap_navigator9.1.5, 9.1.6, 9.1.7, 9.1.8, 9.1.9
NVDibm/datacap5 versions+4

🔴Vulnerability Details

2
GHSA
GHSA-92h8-vfmh-w3cj: IBM Datacap Navigator 92024-07-15
CVEList
IBM Datacap Navigator information disclosure2024-07-15
CVE-2024-39740 (MEDIUM CVSS 5.3) | IBM Datacap Navigator 9.1.5 | cvebase.io