CVE-2024-49344

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Published Feb 20, 2025

CWE ID 384

Summary

CVE-2024-49344 is a vulnerability affecting IBM OpenPages with Watson versions 8.3 and 9.0. The issue arises when the chat feature is enabled, allowing chat sessions to remain active even after a user has logged out. This can potentially lead to unauthorized access or data exposure if an attacker is able to reestablish an active session. IBM has released a patch to address this vulnerability, and it is recommended that affected organizations apply the patch as soon as possible to mitigate the risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

IBM Corporation

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/zfVCQd
https://www.cve.org/CVERecord?id=CVE-2024-49344
https://nvd.nist.gov/vuln/detail/CVE-2024-49344

Back to Vulnerability Database

CVE-2024-49344

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations