CVE-2024-27257

IBM OpenPages 8.3 and 9.0 potentially exposes information about client-side source code through use of JavaScript source maps to unauthorized users.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:ibm:openpages_grc_platform:*:*:*:*:*:*:*:*
cpe:2.3:a:ibm:openpages_with_watson:*:*:*:*:*:*:*:*

History

16 Sep 2024, 14:26

Type Values Removed Values Added
First Time Ibm openpages With Watson
Ibm openpages Grc Platform
Ibm
CPE cpe:2.3:a:ibm:openpages_grc_platform:*:*:*:*:*:*:*:*
cpe:2.3:a:ibm:openpages_with_watson:*:*:*:*:*:*:*:*
Summary
  • (es) IBM OpenPages 8.3 y 9.0 potencialmente expone información sobre el código fuente del lado del cliente mediante el uso de mapas de origen de JavaScript a usuarios no autorizados.
CWE NVD-CWE-Other
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/283966 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/283966 - Vendor Advisory
References () https://www.ibm.com/support/pages/node/7167702 - () https://www.ibm.com/support/pages/node/7167702 - Vendor Advisory

10 Sep 2024, 15:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-09-10 15:15

Updated : 2024-09-16 14:26


NVD link : CVE-2024-27257

Mitre link : CVE-2024-27257

CVE.ORG link : CVE-2024-27257


JSON object : View

Products Affected

ibm

  • openpages_with_watson
  • openpages_grc_platform
CWE
NVD-CWE-Other CWE-540

Inclusion of Sensitive Information in Source Code