CVE-2024-28766
LOWDescription
IBM Security Directory Integrator 7.2.0 and IBM Security Verify Directory Integrator 10.0.0 could disclose sensitive information about directory contents that could aid in further attacks against the system.
CVSS v3.1 Score
Weakness Type (CWE)
Affected Products
| Vendor | Product |
|---|---|
| ibm | security_directory_integrator |
| ibm | security_verify_directory_integrator |
References
Advisories & Patches
Frequently Asked Questions
What is CVE-2024-28766? +
How severe is CVE-2024-28766? +
What products are affected by CVE-2024-28766? +
How do I check if I'm vulnerable to CVE-2024-28766? +
Related Vulnerabilities
Grandstream Networks GXP1628 <=1.0.4.130 is vulnerable to Incorrect Access Control. The device is configured with directory listing enabled, allowing unauthorized …
Dell PowerFlex Manager, version(s) <=4.6.2, contain(s) an Exposure of Information Through Directory Listing vulnerability. An unauthenticated attacker with remote access …
SOUND4 IMPACT/FIRST/PULSE/Eco <=2.x contains an information disclosure vulnerability that allows unauthenticated attackers to access sensitive log files. Attackers can directly …
An issue was discovered in Elspec G5 digital fault recorder versions 1.1.4.15 and before. Unauthenticated directory listing can occur: the …
A Site-wide directory listing vulnerability in /fm in actidata actiNAS SL 2U-8 RDX 3.2.03-SP1 allows remote attackers to list the …
A directory listing vulnerability in Customer Support System v1 allows attackers to list directories and sensitive files within the application …