← Voltar para CVEs
CVE-2023-27291
MEDIUM4.5
Descricao
IBM Watson CP4D Data Stores 4.6.0, 4.6.1, 4.6.2, and 4.6.3 does not encrypt sensitive or critical information before storage or transmission which could allow an attacker to obtain sensitive information. IBM X-Force ID: 248740.
Detalhes CVE
Pontuacao CVSS v3.14.5
SeveridadeMEDIUM
Vetor CVSSCVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:N/A:N
Vetor de ataqueNETWORK
ComplexidadeLOW
Privilegios necessariosHIGH
Interacao do usuarioREQUIRED
Publicado3/3/2024
Ultima modificacao12/23/2024
Fontenvd
Avistamentos honeypot0
Produtos afetados
ibm:watson_cp4d_data_stores
Fraquezas (CWE)
CWE-319
Referencias
https://exchange.xforce.ibmcloud.com/vulnerabilities/248740(psirt@us.ibm.com)
https://www.ibm.com/support/pages/node/6965458(psirt@us.ibm.com)
https://exchange.xforce.ibmcloud.com/vulnerabilities/248740(af854a3a-2127-422b-91ae-364da2661108)
https://www.ibm.com/support/pages/node/6965458(af854a3a-2127-422b-91ae-364da2661108)
Correlacoes IOC
Sem correlacoes registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.