Information Exposure Vulnerability in IBM Analytics Content Hub
CVE-2024-38327

6.8MEDIUM

Key Information:

Vendor: IBM
Status: Analytics Content Hub
Vendor: CVE Published:; 10 July 2025

What is CVE-2024-38327?

IBM Analytics Content Hub versions 2.0 to 2.3 contain a vulnerability that allows for potential information exposure. The issue arises from an accessible JavaScript source map, which could provide attackers with insights into the JavaScript code utilized by the application's API. By exploiting this vulnerability, malicious actors could read and debug sensitive information, potentially leading to further attacks. It is crucial for users of these versions to be aware of this security concern and implement necessary measures to mitigate risks.

Affected Version(s)

Analytics Content Hub 2.0, 2.1, 2.2, 2.3

References

https://www.ibm.com/support/pages/node/7234122

vendor-advisory

CVSS V3.1

Score:

6.8

Severity:

MEDIUM

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 10, 2025
Vulnerability Reserved
Jun 13, 2024