exploitDog

GHSA-mr5g-mvhg-7rhw

Опубликовано: 27 июн. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 6.8

Описание

IBM Cloud Pak for Security (CP4S) 1.9.0.0 through 1.9.2.0 could allow an attacker with a valid API key for one tenant to access data from another tenant's account. IBM X-Force ID: 254136.

IBM Cloud Pak for Security (CP4S) 1.9.0.0 through 1.9.2.0 could allow an attacker with a valid API key for one tenant to access data from another tenant's account. IBM X-Force ID: 254136.

Ссылки

EPSS

Процентиль: 19%

0.00062

Низкий

6.8 Medium

CVSS3

CVE ID

Дефекты

CWE-200

Связанные уязвимости

CVE-2023-30993

CVSS3: 6.8

nvd

больше 2 лет назад

IBM Cloud Pak for Security (CP4S) 1.9.0.0 through 1.9.2.0 could allow an attacker with a valid API key for one tenant to access data from another tenant's account. IBM X-Force ID: 254136.

EPSS

Процентиль: 19%

0.00062

Низкий

6.8 Medium

CVSS3

CVE ID

Дефекты

CWE-200