Sensitive Information Disclosure in IBM Analytics Content Hub
CVE-2024-37524

5.3MEDIUM

Key Information:

Vendor: IBM
Status: Analytics Content Hub
Vendor: CVE Published:; 10 July 2025

What is CVE-2024-37524?

IBM Analytics Content Hub versions 2.0 through 2.3 may expose sensitive information to remote attackers. This occurs when detailed technical error messages are displayed in the user's browser, potentially revealing data that could be exploited by malicious actors. Organizations using these versions should review their error handling processes and take measures to prevent disclosure of sensitive information.

Affected Version(s)

Analytics Content Hub 2.0, 2.1, 2.2, 2.3

References

https://www.ibm.com/support/pages/node/7234122

vendor-advisory

CVSS V3.1

Score:

5.3

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 10, 2025
Vulnerability Reserved
Jun 9, 2024