Security Advisory

CVE-2024-39746

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-08-22 10:29:54

Last updated 2025-10-31 15:01:03

Assigner ibm

State PUBLISHED

Description

IBM Sterling Connect:Direct Web Services 6.0, 6.1, 6.2, and 6.3 could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could exploit this vulnerability to obtain sensitive information using man in the middle techniques.

← Browse all CVEs View on cve.org ↗