← Back to CVEs
CVE-2023-27291
MEDIUM4.5
Description
IBM Watson CP4D Data Stores 4.6.0, 4.6.1, 4.6.2, and 4.6.3 does not encrypt sensitive or critical information before storage or transmission which could allow an attacker to obtain sensitive information. IBM X-Force ID: 248740.
CVE Details
CVSS v3.1 Score4.5
SeverityMEDIUM
CVSS VectorCVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:N/A:N
Attack VectorNETWORK
ComplexityLOW
Privileges RequiredHIGH
User InteractionREQUIRED
Published3/3/2024
Last Modified12/23/2024
Sourcenvd
Honeypot Sightings0
Affected Products
ibm:watson_cp4d_data_stores
Weaknesses (CWE)
CWE-319
References
https://exchange.xforce.ibmcloud.com/vulnerabilities/248740(psirt@us.ibm.com)
https://www.ibm.com/support/pages/node/6965458(psirt@us.ibm.com)
https://exchange.xforce.ibmcloud.com/vulnerabilities/248740(af854a3a-2127-422b-91ae-364da2661108)
https://www.ibm.com/support/pages/node/6965458(af854a3a-2127-422b-91ae-364da2661108)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.