First published: Fri Jan 17 2025(Updated: )
Under certain log settings the IAM or CORE service will log credentials in the iam logfile in Fortra Application Hub (Formerly named Helpsystems One) prior to version 1.3
Credit: df4dee71-de3a-4139-9588-11b62fe6c0ff
Affected Software | Affected Version | How to fix |
---|---|---|
Fortra Application Hub | <1.3 |
Upgrade to Fortra Application Hub 1.3 or higher.
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2024-11923 is classified as a high-severity vulnerability due to potential exposure of sensitive credentials.
To fix CVE-2024-11923, upgrade to Fortra Application Hub version 1.3 or later.
CVE-2024-11923 affects Fortra Application Hub versions prior to 1.3.
CVE-2024-11923 can leak credentials logged in the IAM logfile under certain log settings.
Exploiting CVE-2024-11923 could lead to unauthorized access due to exposed sensitive credentials.