Cyber Resilience

CVE-2024-38327

Medium

Published: 10 July 2025

Published
10 July 2025
Modified
23 July 2025
KEV Added
Patch
CVSS Score v3.1 6.8 CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H
EPSS Score 0.0019 40.8th percentile
Risk Priority 14 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2024-38327 is a medium-severity Inclusion of Sensitive Information in Source Code (CWE-540) vulnerability in Ibm Analytics Content Hub. Its CVSS base score is 6.8 (Medium).

Operationally, exploitation aligns with the MITRE ATT&CK technique Exploit Public-Facing Application (T1190); ranked at the 40.8th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.

The strongest mitigations our analysis identified are NIST 800-53 CM-6 (Configuration Settings) and PE-19 (Information Leakage).

Deeper analysis

IBM Analytics Content Hub versions 2.0, 2.1, 2.2, and 2.3 are affected by CVE-2024-38327, a vulnerability involving information exposure through an exposed JavaScript source map. This exposure allows potential attackers to read and debug the JavaScript code used in the application's API, facilitating further attacks. The issue is classified under CWE-540 and has a CVSS v3.1 base score of 6.8 (AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H), indicating medium severity with high impacts on confidentiality, integrity, and availability.

Exploitation requires network access, low attack complexity, high privileges (PR:H), and user interaction (UI:R). A privileged user, such as an authenticated administrator or similar role, could be targeted to access the exposed source map, enabling them to analyze and reverse-engineer the API's JavaScript logic. Successful exploitation could lead to significant information disclosure and subsequent attacks, potentially compromising the confidentiality, integrity, and availability of the application.

IBM has published an advisory detailing the vulnerability at https://www.ibm.com/support/pages/node/7234122, which security practitioners should consult for specific mitigation steps, such as applying patches or configuration changes to prevent source map exposure.

EU & UK References

Vulnerability details

IBM Analytics Content Hub 2.0, 2.1, 2.2, and 2.3 is vulnerable to information exposure and further attacks due to an exposed JavaScript source map which could assist an attacker to read and debug JavaScript used in the application's API.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1190 Exploit Public-Facing Application Initial Access
Adversaries may attempt to exploit a weakness in an Internet-facing host or system to initially access a network.
Why these techniques?

Exposed JS source maps in public-facing IBM app directly enable T1190 exploitation (authenticated info disclosure leading to reverse-engineering and follow-on attacks).

Confidence: MEDIUM · MITRE ATT&CK Enterprise v18.1

CVEs Like This One

CVE-2024-39750Same product: Ibm Analytics Content Hub
CVE-2024-39752Same product: Ibm Analytics Content Hub
CVE-2026-8633Same vendor: Ibm
CVE-2025-0159Same vendor: Ibm
CVE-2023-49886Same vendor: Ibm
CVE-2026-1343Same vendor: Ibm
CVE-2026-8620Same vendor: Ibm
CVE-2026-9170Same vendor: Ibm
CVE-2026-3366Same vendor: Ibm
CVE-2026-8175Same vendor: Ibm

Affected Assets

ibm
analytics content hub
2.0 — 2.4

Mitigating Controls

Mitigating Controls (NIST 800-53 r5) AI

prevent

Directly prevents leakage of sensitive JavaScript source via exposed source maps that enable API reverse-engineering.

prevent

Enforces secure configuration settings that disable production exposure of source maps and debug artifacts.

prevent

Restricts unnecessary debug functionality (source maps) from being included or served by the application.

References