CVE-2024-39747

Summary

IBM Sterling Connect:Direct Web Services 6.0, 6.1, 6.2, and 6.3 uses default credentials for potentially critical functionality.

Affected Software

VendorProductVersion RangeStatus
IBMSterling Connect:Direct Web Services6.0, 6.1, 6.2, 6.3affected

Weaknesses

  • CWE-1392: CWE-1392: Use of Default Credentials

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References