PT-2024-10208 · Ibm · Ibm Security Reaqta
Ben Goodspeed
+9
·
Published
2024-03-09
·
Updated
2025-07-15
·
CVE-2024-45640
CVSS v3.1
5.3
Medium
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
IBM Security ReaQta version 3.12
Description
The issue is related to weaknesses in the authentication procedure of IBM Security ReaQta, which could allow a remote attacker to disclose protected information. Specifically, IBM Security ReaQta 3.12 returns sensitive information in an HTTP response that could be used in further attacks against the system.
Recommendations
For IBM Security ReaQta version 3.12, consider restricting access to sensitive information and HTTP responses to minimize the risk of exploitation until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Improper Authentication
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Ibm Security Reaqta