CVE-2023-50957

Опубликовано: 10 фев. 2024

Источник: nvd

CVSS3: 8

CVSS3: 7.2

EPSS Низкий

Описание

IBM Storage Defender - Resiliency Service 2.0 could allow a privileged user to perform unauthorized actions after obtaining encrypted data from clear text key storage. IBM X-Force ID: 275783.

Ссылки

https://exchange.xforce.ibmcloud.com/vulnerabilities/275783
VDB Entry
Vendor Advisory
https://www.ibm.com/support/pages/node/7115261
Patch
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/275783
VDB Entry
Vendor Advisory
https://www.ibm.com/support/pages/node/7115261
Patch
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:ibm:storage_defender_resiliency_service:2.0:*:*:*:*:*:*:*

EPSS

Процентиль: 13%

0.00042

Низкий

8 High

CVSS3

7.2 High

CVSS3

Дефекты

CWE-312

Связанные уязвимости

GHSA-pvv9-mc25-j2pr

CVSS3: 8

github

почти 2 года назад

IBM Storage Defender - Resiliency Service 2.0 could allow a privileged user to perform unauthorized actions after obtaining encrypted data from clear text key storage. IBM X-Force ID: 275783.

EPSS

Процентиль: 13%

0.00042

Низкий

8 High

CVSS3

7.2 High

CVSS3

Дефекты

CWE-312