← back
CVE-2024-38327

IBM Analytics Content Hub information disclosure

CVSS 6.8 MEDIUMEPSS 0.3%CWE-540
Vexday Risk Score
13Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 6.8EPSS 0.3%KEV nãoPoC Nuclei Metasploit Patch referenciado
Lifecycle
10 Jul 2025Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
IBM Analytics Content Hub 2.0, 2.1, 2.2, and 2.3 is vulnerable to information exposure and further attacks due to an exposed JavaScript source map which could assist an attacker to read and debug JavaScript used in the application's API.
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H
Affected products
IBM · Analytics Content Hub

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://www.ibm.com/support/pages/node/7234122