CVE-2024-39729

{"id": "CVE-2024-39729", "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "psirt@us.ibm.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 4.3, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "LOW"}, "impactScore": 1.4, "exploitabilityScore": 2.8}, {"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 4.3, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "LOW"}, "impactScore": 1.4, "exploitabilityScore": 2.8}]}, "published": "2024-07-15T03:15:02.043", "references": [{"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/295968", "tags": ["VDB Entry", "Vendor Advisory"], "source": "psirt@us.ibm.com"}, {"url": "https://www.ibm.com/support/pages/node/7160185", "tags": ["Vendor Advisory"], "source": "psirt@us.ibm.com"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/295968", "tags": ["VDB Entry", "Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://www.ibm.com/support/pages/node/7160185", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Secondary", "source": "psirt@us.ibm.com", "description": [{"lang": "en", "value": "CWE-540"}]}, {"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "IBM Datacap Navigator 9.1.5, 9.1.6, 9.1.7, 9.1.8, and 9.1.9 could allow an authenticated user to obtain sensitive information from source code that could be used in further attacks against the system. IBM X-Force ID: 295968."}, {"lang": "es", "value": "IBM Datacap Navigator 9.1.5, 9.1.6, 9.1.7, 9.1.8 y 9.1.9 podr\u00eda permitir a un usuario autenticado obtener informaci\u00f3n confidencial del c\u00f3digo fuente que podr\u00eda usarse en futuros ataques contra el sistema. ID de IBM X-Force: 295968."}], "lastModified": "2024-11-21T09:28:18.363", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:ibm:datacap:9.1.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "26D9A78C-CB26-4761-81CF-E273789338F4"}, {"criteria": "cpe:2.3:a:ibm:datacap:9.1.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1DF7F533-9997-4067-80A4-55DFD10C166F"}, {"criteria": "cpe:2.3:a:ibm:datacap:9.1.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A4854F9C-EB1F-4277-B07F-9599DA1995DF"}, {"criteria": "cpe:2.3:a:ibm:datacap:9.1.8:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5BBD9AE6-DEAB-4D84-9E62-D0B718ED2F2E"}, {"criteria": "cpe:2.3:a:ibm:datacap:9.1.9:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AA9CD5BF-61E6-4A91-A0BF-1031F673701A"}, {"criteria": "cpe:2.3:a:ibm:datacap_navigator:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D67D9A8F-F888-41EC-8312-3D497F7A3CE8"}], "operator": "OR"}]}], "sourceIdentifier": "psirt@us.ibm.com"}