CVE-2024-7577

MEDIUM

IBM Infosphere Information Server < 11.7.1 - Log Information Exposure

Title source: rule
STIX 2.1

Description

IBM InfoSphere Information Server 11.7 could disclose sensitive user credentials from log files during new installation of the product.

References (1)

Scores

CVSS v3 4.4
EPSS 0.0018
EPSS Percentile 39.4%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact partial

Details

CWE
CWE-532
Status published
Products (1)
ibm/infosphere_information_server 11.7 - 11.7.1
Published Mar 29, 2025
Tracked Since Feb 18, 2026