CVE-2024-49798: IBM ApplinX Information Disclosure

Q: What is the severity of CVE-2024-49798?

CVE-2024-49798 is classified as a medium severity vulnerability.

Q: How do I fix CVE-2024-49798?

To fix CVE-2024-49798, install the latest patch for IBM ApplinX 11.1.

Q: What type of information can be leaked due to CVE-2024-49798?

CVE-2024-49798 can lead to the exposure of sensitive information through detailed technical error messages.

Q: Can CVE-2024-49798 be exploited remotely?

Yes, CVE-2024-49798 can be exploited by remote attackers.

Q: What products are affected by CVE-2024-49798?

CVE-2024-49798 affects IBM ApplinX version 11.1.

Published Feb 5, 2025

Updated

IBM ApplinX 11.1 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system.

Other sources

IBM ApplinX could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system.

— IBM

Affected Software

2 affected componentsFixes available

IBM ApplinX<=11.1

IBM ApplinX=11.1.0

Event History

Feb 5, 2025

CVE Published

via IBM·12:00 AM

CVE Published

via MITRE·11:50 PM

Data Sourced

via MITRE·11:50 PM

DescriptionSeverityWeakness

Feb 6, 2025

Data Sourced

via NVD·12:15 AM

DescriptionSeverityWeaknessAffected Software

Parent advisories

This vulnerability appears in the following advisories.

IBM-7182522

Frequently Asked Questions

What is the severity of CVE-2024-49798?

CVE-2024-49798 is classified as a medium severity vulnerability.

How do I fix CVE-2024-49798?

To fix CVE-2024-49798, install the latest patch for IBM ApplinX 11.1.

What type of information can be leaked due to CVE-2024-49798?