CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-23619

A hardcoded credential vulnerability exists in IBM Merge Healthcare eFilm Workstation. A remote, unauthenticated attacker can exploit this vulnerability to achieve information disclosure or remote code execution.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.009

EPSS Ranking 75.4%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 10.0

References

https://blog.exodusintel.com/2024/01/25/ibm-merge-healthcare-efilm-workstation-information-disclosure/
https://blog.exodusintel.com/2024/01/25/ibm-merge-healthcare-efilm-workstation-information-disclosure/

Products affected by CVE-2024-23619

Ibm » Merge Efilm Workstation » Version: 4.2

cpe:2.3:a:ibm:merge_efilm_workstation:4.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-23619

Products

Pricing

Contact Us