CVE-2024-56467

Name of the Vulnerable Software and Affected Versions IBM EntireX version 11.1

Description The issue allows a local user to obtain sensitive information when a detailed technical error message is returned. This information could be used in further attacks against the system.

Recommendations For IBM EntireX version 11.1, consider restricting access to detailed technical error messages to minimize the risk of exploitation. As a temporary workaround, limit the information disclosed in error messages until a fix is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.