VDB
CVE-2024-39747
CVE-2024-39747
PUBLISHED
CVSS 8.100000381469727 HIGH
IBM Sterling Connect:Direct Web Services 6.0, 6.1, 6.2, and 6.3 uses default credentials for potentially critical functionality.
EPSS 0.08% · 24.0th percentile
Risk Scores
CVSS 3.1
8.100000381469727
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score
0.08%
24.0th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| ibm | sterling_connect_direct_web_services | 6.0.0.0, 6.2.0, 6.3.0 |
| IBM | Sterling Connect:Direct Web Services | 6.0, 6.1, 6.2, 6.3 |
Timeline
- Aug 30, 2024 CVE Published
- Aug 31, 2024 EPSS Score
- Aug 31, 2024 PoC Published
- Sep 16, 2024 CVE Updated
- Sep 20, 2024 EPSS Score
- Oct 4, 2024 Coalition ESS Score
- Oct 10, 2024 EPSS Score
- Oct 31, 2024 EPSS Score
- Nov 20, 2024 EPSS Score
- Dec 11, 2024 EPSS Score
- Dec 31, 2024 EPSS Score
- Jan 20, 2025 EPSS Score