CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

CVE-2024-49355: IBM OpenPages log manipulation

5.3 CVSS

Description

IBM OpenPages with Watson 8.3 and 9.0 may write improperly neutralized data to server log files when the tracing is enabled per the System Tracing feature.

Classification

CVE ID: CVE-2024-49355

CVSS Base Severity: MEDIUM

CVSS Base Score: 5.3

CVSS Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:N

Affected Products

Vendor: IBM

Product: OpenPages with Watson

Exploit Prediction Scoring System (EPSS)

EPSS Score: 0.03% (probability of being exploited)

EPSS Percentile: 4.62% (scored less or equal to compared to others)

EPSS Date: 2025-03-21 (when was this score calculated)

References

https://www.ibm.com/support/pages/node/7183541

Timeline

2025-02-21 00:23:35 UTC
CVE

IBM OpenPages log manipulation