CVE-2024-49782

High

IBM OpenPages with Watson 8.3 and 9.0 could allow a remote attacker to spoof mail server identity when using SSL/TLS security. An…

ibm·CWE-297·Published 2025-02-20

CVSS

8.2

EPSS

0.00

KEV

Exploits

cve.orgen

310 chars

IBM OpenPages with Watson 8.3 and 9.0 could allow a remote attacker to spoof mail server identity when using SSL/TLS security. An attacker could exploit this vulnerability to gain access to sensitive information disclosed through email notifications generated by OpenPages or disrupt notification delivery.

NVDen

310 chars

NVDes

373 chars

IBM OpenPages con Watson 8.3 y 9.0 podría permitir que un atacante remoto suplante la identidad del servidor de correo al utilizar seguridad SSL/TLS. Un atacante podría aprovechar esta vulnerabilidad para obtener acceso a información confidencial divulgada a través de notificaciones de correo electrónico generadas por OpenPages o interrumpir la entrega de notificaciones.

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
3.1	Primary	NVD	8.2	3.9	4.2	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:L
3.1	Primary	cve.org	6.8	—	—	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H