CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-49779

IBM OpenPages with Watson 8.3 and 9.0 IBM OpenPages could allow a remote attacker to bypass security restrictions, caused by improper validation and management of authentication cookies. By modifying the CSRF token and Session Id cookie parameters using the cookies of another user, a remote attacker could exploit this vulnerability to bypass security restrictions and gain unauthorized access to the vulnerable application.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 27.8%

CVSS Severity

CVSS v3 Score 4.3

References

https://www.ibm.com/support/pages/node/7183541

Products affected by CVE-2024-49779

Ibm » Openpages With Watson » Version: Any

cpe:2.3:a:ibm:openpages_with_watson:*
Ibm » Openpages With Watson » Version: 9.0

cpe:2.3:a:ibm:openpages_with_watson:9.0
Linux » Linux Kernel » Version: N/A

cpe:2.3:o:linux:linux_kernel:-
Microsoft » Windows » Version: N/A

cpe:2.3:o:microsoft:windows:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-49779

Products

Pricing

Contact Us