MEDIUM🇵🇱 Wersja polska

CVE-2024-39752

CVSS 6.8v3.1pub. 2025-07-10upd. 2025-07-23

IBM Analytics Content Hub 2.0, 2.1, 2.2, and 2.3 could be vulnerable to malicious file upload by not validating the type of file uploaded to Explore Content. Attackers can make use of this weakness and upload malicious executable files into the system, and it can be sent to victim for performing further attacks.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H
  • IBM Analytics Content Hub

    APP
    Ibm
    2.0 – 2.4 (bez)
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2024-39750HIGH8.8ten sam produkt

IBM Analytics Content Hub 2.0 is vulnerable to a buffer overflow due to improper return length checking. A rem...

CVE-2024-37524MEDIUM5.3ten sam produkt

IBM Analytics Content Hub 2.0, 2.1, 2.2, and 2.3 could allow a remote attacker to obtain sensitive information...

CVE-2024-38327MEDIUM6.8ten sam produkt

IBM Analytics Content Hub 2.0, 2.1, 2.2, and 2.3 is vulnerable to information exposure and further attacks due...

CVE-2025-36090MEDIUM4.3ten sam produkt

IBM Analytics Content Hub 2.0, 2.1, 2.2, and 2.3 could allow a remote attacker to obtain information about the...

CVE-2024-35134MEDIUM5.3ten sam produkt

IBM Analytics Content Hub 2.0 could allow a remote attacker to obtain sensitive information when a detailed te...