CVE-2024-35117: IBM OpenPages information disclosure

4.4 CVSS

Description

IBM OpenPages with Watson 9.0 may write sensitive information, under specific configurations, in clear text to the system tracing log files that could be obtained by a privileged user.

Classification

CVE ID: CVE-2024-35117

CVSS Base Severity: MEDIUM

CVSS Base Score: 4.4

Affected Products

Vendor: IBM

Product: OpenPages with Watson

Exploit Prediction Scoring System (EPSS)

EPSS Score: 0.05% (probability of being exploited)

EPSS Percentile: 20.8% (scored less or equal to compared to others)

EPSS Date: 2025-02-25 (when was this score calculated)

References

https://www.ibm.com/support/pages/node/7165392

Timeline

2024-12-12 00:30:53 UTC
CVE

IBM OpenPages information disclosure
2025-01-28 00:30:21 UTC
CVE

IBM OpenPages with Watson information disclosure