Lucene search
+L

CVE-2023-38367

🗓️ 29 Feb 2024 02:13:16Reported by ibmType 
cve
 cve
🔗 web.nvd.nist.gov👁 142 Views

IBM Cloud Pak Foundational Services Identity Provider (idP) API allows CRUD Operations with an invalid token

Related
Detection
Affected
Refs
NVD
Vulners
Vulnrichment
Node
OR
ibmcloud_pak_for_business_automationMatch21.0.1interim_fix_001
ibmcloud_pak_for_business_automationMatch21.0.1interim_fix_002
ibmcloud_pak_for_business_automationMatch21.0.1interim_fix_003
ibmcloud_pak_for_business_automationMatch21.0.1interim_fix_004
ibmcloud_pak_for_business_automationMatch21.0.1interim_fix_005
ibmcloud_pak_for_business_automationMatch21.0.1interim_fix_006
ibmcloud_pak_for_business_automationMatch21.0.1interim_fix_007
ibmcloud_pak_for_business_automationMatch21.0.2interim_fix_001
ibmcloud_pak_for_business_automationMatch21.0.2interim_fix_0012
ibmcloud_pak_for_business_automationMatch21.0.2interim_fix_002
ibmcloud_pak_for_business_automationMatch21.0.2interim_fix_003
ibmcloud_pak_for_business_automationMatch21.0.2interim_fix_004
ibmcloud_pak_for_business_automationMatch21.0.2interim_fix_005
ibmcloud_pak_for_business_automationMatch21.0.2interim_fix_006
ibmcloud_pak_for_business_automationMatch21.0.2interim_fix_007
ibmcloud_pak_for_business_automationMatch21.0.2interim_fix_008
ibmcloud_pak_for_business_automationMatch21.0.2interim_fix_009
ibmcloud_pak_for_business_automationMatch21.0.2interim_fix_010
ibmcloud_pak_for_business_automationMatch21.0.2interim_fix_011
ibmcloud_pak_for_business_automationMatch21.0.2interim_fix_012
ibmcloud_pak_for_business_automationMatch21.0.3interim_fix_001
ibmcloud_pak_for_business_automationMatch21.0.3interim_fix_002
ibmcloud_pak_for_business_automationMatch21.0.3interim_fix_003
ibmcloud_pak_for_business_automationMatch21.0.3interim_fix_004
ibmcloud_pak_for_business_automationMatch21.0.3interim_fix_005
ibmcloud_pak_for_business_automationMatch21.0.3interim_fix_006
ibmcloud_pak_for_business_automationMatch21.0.3interim_fix_007
ibmcloud_pak_for_business_automationMatch21.0.3interim_fix_008
ibmcloud_pak_for_business_automationMatch21.0.3interim_fix_009
ibmcloud_pak_for_business_automationMatch21.0.3interim_fix_010
ibmcloud_pak_for_business_automationMatch21.0.3interim_fix_011
ibmcloud_pak_for_business_automationMatch21.0.3interim_fix_012
ibmcloud_pak_for_business_automationMatch21.0.3interim_fix_013
ibmcloud_pak_for_business_automationMatch21.0.3interim_fix_014
ibmcloud_pak_for_business_automationMatch21.0.3interim_fix_015
ibmcloud_pak_for_business_automationMatch21.0.3interim_fix_016
ibmcloud_pak_for_business_automationMatch21.0.3interim_fix_017
ibmcloud_pak_for_business_automationMatch21.0.3interim_fix_018
ibmcloud_pak_for_business_automationMatch21.0.3interim_fix_019
ibmcloud_pak_for_business_automationMatch21.0.3interim_fix_020
ibmcloud_pak_for_business_automationMatch21.0.3interim_fix_021
ibmcloud_pak_for_business_automationMatch21.0.3interim_fix_022
ibmcloud_pak_for_business_automationMatch22.0.1interim_fix_001
ibmcloud_pak_for_business_automationMatch22.0.1interim_fix_002
ibmcloud_pak_for_business_automationMatch22.0.1interim_fix_003
ibmcloud_pak_for_business_automationMatch22.0.1interim_fix_004
ibmcloud_pak_for_business_automationMatch22.0.1interim_fix_005
ibmcloud_pak_for_business_automationMatch22.0.1interim_fix_006
ibmcloud_pak_for_business_automationMatch22.0.2interim_fix_001
ibmcloud_pak_for_business_automationMatch22.0.2interim_fix_002
ibmcloud_pak_for_business_automationMatch22.0.2interim_fix_003
ibmcloud_pak_for_business_automationMatch22.0.2interim_fix_004
ibmcloud_pak_for_business_automationMatch22.0.2interim_fix_005
ibmcloud_pak_for_business_automationMatch22.0.2interim_fix_006
[
  {
    "defaultStatus": "unaffected",
    "product": "Cloud Pak for Automation",
    "vendor": "IBM",
    "versions": [
      {
        "status": "affected",
        "version": "18.0.0, 18.0.1, 18.0.2, 19.0.1, 19.0.2, 19.0.3, 20.0.1, 20.0.2, 20.0.3, 21.0.1, 21.0.2, 21.0.3, 22.0.1, 22.0.2"
      }
    ]
  }
]

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

17 Jun 2026 06:09Current
6.3Medium risk
Vulners AI Score6.3
CVSS 3.16.5
EPSS0.00341
SSVC
142