CVE-2024-39740

MEDIUM

IBM Datacap Navigator <9.1.10 - Info Disclosure

Title source: llm
STIX 2.1

Description

IBM Datacap Navigator 9.1.5, 9.1.6, 9.1.7, 9.1.8, and 9.1.9 displays version information in HTTP requests that could allow an attacker to gather information for future attacks against the system. IBM X-Force ID: 296009.

References (2)

Core 2
Core References
Vendor Advisory vendor-advisory
https://www.ibm.com/support/pages/node/7160185

Scores

CVSS v3 4.3
EPSS 0.0037
EPSS Percentile 28.7%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact partial

Details

CWE
CWE-497
Status published
Products (6)
ibm/datacap 9.1.5
ibm/datacap 9.1.6
ibm/datacap 9.1.7
ibm/datacap 9.1.8
ibm/datacap 9.1.9
ibm/datacap_navigator
Published Jul 15, 2024
Tracked Since Feb 18, 2026