CVE-2024-28765
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
27/05/2026
Last modified:
03/06/2026
Description
IBM SDI 7.2.0.0 through 7.2.0.14 and IBM Security Directory Integrator 10.0.0.0 through 10.0.0.2 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system.
Impact
Base Score 3.x
5.30
Severity 3.x
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:a:ibm:security_directory_integrator:*:*:*:*:*:*:*:* | 7.2.0 (including) | 7.2.0.15 (excluding) |
| cpe:2.3:a:ibm:security_directory_integrator:*:*:*:*:*:*:*:* | 10.0.0 (including) | 10.0.0.3 (excluding) |
To consult the complete list of CPE names with products and versions, see this page



