CVE-2024-56467

IBM EntireX 11.1 could allow a local user to obtain sensitive information when a detailed technical error message is returned. This information could be used in further attacks against the system.
References
Link Resource
https://www.ibm.com/support/pages/node/7182693 Vendor Advisory
Configurations

Configuration 1 (hide)

AND
cpe:2.3:a:ibm:entirex:11.1:*:*:*:*:*:*:*
OR cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

History

07 Jul 2025, 18:26

Type Values Removed Values Added
Summary
  • (es) IBM EntireX 11.1 podría permitir que un usuario local obtenga información confidencial cuando se devuelve un mensaje de error técnico detallado. Esta información podría utilizarse en futuros ataques contra el sistema.
References () https://www.ibm.com/support/pages/node/7182693 - () https://www.ibm.com/support/pages/node/7182693 - Vendor Advisory
First Time Microsoft
Ibm entirex
Linux
Ibm
Microsoft windows
Linux linux Kernel
CPE cpe:2.3:a:ibm:entirex:11.1:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

06 Feb 2025, 21:15

Type Values Removed Values Added
New CVE

Information

Published : 2025-02-06 21:15

Updated : 2025-07-07 18:26


NVD link : CVE-2024-56467

Mitre link : CVE-2024-56467

CVE.ORG link : CVE-2024-56467


JSON object : View

Products Affected

linux

  • linux_kernel

microsoft

  • windows

ibm

  • entirex
CWE
CWE-209

Generation of Error Message Containing Sensitive Information