CVE-2024-41984

CVSS v3.1

3.5

Low

Vector

AV:A/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N

Name of the Vulnerable Software and Affected Versions: SmartClient Opcenter QL Home (SC) versions 13.2 through 2505 SmartClient SOA Audit versions 13.2 through 2505 SmartClient SOA Cockpit versions 13.2 through 2505

Description: The affected application improperly handles errors when accessing an inaccessible resource, potentially exposing system applications.

Recommendations: Update SmartClient Opcenter QL Home (SC) to a version prior to 13.2 or greater than or equal to 2506. Update SmartClient SOA Audit to a version prior to 13.2 or greater than or equal to 2506. Update SmartClient SOA Cockpit to a version prior to 13.2 or greater than or equal to 2506.

Fix

Generation of Error Message Containing Sensitive Information

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-209

Related Identifiers

CVE-2024-41984

Affected Products

Opcenter Ql Home

Soa Audit

Soa Cockpit

CVE-2024-41984

Weakness Enumeration

Related Identifiers

Affected Products

References · 4