MEDIUM🇬🇧 English

CVE-2024-39752

CVSS 6.8v3.1pub. 2025-07-10upd. 2025-07-23

IBM Analytics Content Hub 2.0, 2.1, 2.2, and 2.3 could be vulnerable to malicious file upload by not validating the type of file uploaded to Explore Content. Attackers can make use of this weakness and upload malicious executable files into the system, and it can be sent to victim for performing further attacks.

oryginał EN
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H
  • IBM Analytics Content Hub

    APP
    Ibm
    2.0 – 2.4 (bez)
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
CWE
Referencje

Powiązane podatności

CVE-2024-39750HIGH8.8ten sam produkt

IBM Analytics Content Hub 2.0 is vulnerable to a buffer overflow due to improper return length checking. A rem...

CVE-2024-37524MEDIUM5.3ten sam produkt

IBM Analytics Content Hub 2.0, 2.1, 2.2, and 2.3 could allow a remote attacker to obtain sensitive information...

CVE-2024-38327MEDIUM6.8ten sam produkt

IBM Analytics Content Hub 2.0, 2.1, 2.2, and 2.3 is vulnerable to information exposure and further attacks due...

CVE-2025-36090MEDIUM4.3ten sam produkt

IBM Analytics Content Hub 2.0, 2.1, 2.2, and 2.3 could allow a remote attacker to obtain information about the...

CVE-2024-35134MEDIUM5.3ten sam produkt

IBM Analytics Content Hub 2.0 could allow a remote attacker to obtain sensitive information when a detailed te...