Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
CVE Vulnerability Details :
CVE-2024-28765
PUBLISHED
More InfoOfficial Page
Assigner-ibm
Assigner Org ID-9a959283-ebb5-44b6-b705-dcc2bbced522
View Known Exploited Vulnerability (KEV) details
Published At-27 May, 2026 | 13:47
Updated At-28 May, 2026 | 15:39
Rejected At-
▼CVE Numbering Authority (CNA)
Security vulnerability was found in IBM Security Directory Integrator

IBM SDI 7.2.0.0 through 7.2.0.14 and IBM Security Directory Integrator 10.0.0.0 through 10.0.0.2 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system.

Affected Products
Vendor
IBM CorporationIBM
Product
SDI
CPEs
  • cpe:2.3:a:ibm:sdi:7.2.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:sdi:7.2.0.14:*:*:*:*:*:*:*
Default Status
unaffected
Versions
Affected
  • From 7.2.0.0 through 7.2.0.14 (semver)
Vendor
IBM CorporationIBM
Product
Security Directory Integrator
CPEs
  • cpe:2.3:a:ibm:security_directory_integrator:10.0.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:security_directory_integrator:10.0.0.2:*:*:*:*:*:*:*
Default Status
unaffected
Versions
Affected
  • From 10.0.0.0 through 10.0.0.2 (semver)
Problem Types
TypeCWE IDDescription
CWECWE-209CWE-209 Generation of Error Message Containing Sensitive Information
Type: CWE
CWE ID: CWE-209
Description: CWE-209 Generation of Error Message Containing Sensitive Information
Metrics
VersionBase scoreBase severityVector
3.15.3MEDIUM
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Version: 3.1
Base score: 5.3
Base severity: MEDIUM
Vector:
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions

IBM strongly encourages customers to update their systems promptly. Principal Product and Versions Fix Availability IBM Security Director Integrator 7.2.0.15 7.2.0-ISS-SDI-FP0015 https://www.ibm.com/support/fixcentral/swg/selectFixes IBM Security Verify Directory Integrator 10.0.0.3 IBM-SVDI-10.0.0.3 https://www.ibm.com/support/fixcentral/swg/selectFixes

Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://www.ibm.com/support/pages/node/7268903
vendor-advisory
patch
Hyperlink: https://www.ibm.com/support/pages/node/7268903
Resource:
vendor-advisory
patch
▼Authorized Data Publishers (ADP)
CISA ADP Vulnrichment
Affected Products
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
Details not found