Lucene search
IbmCVE-2023-50327HistoryFeb 02, 2024 - 1:15 a.m.
CVE-2023-50327
2024-02-0201:15:07
CWE-650
CWE-436
ibm
web.nvd.nist.gov
19
ibm
powersc
http
security
vulnerability
file modification
x-force id 275109
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
AI Score
5.1
Confidence
High
EPSS
0.001
Percentile
24.8%
IBM PowerSC 1.3, 2.0, and 2.1 uses insecure HTTP methods which could allow a remote attacker to perform unauthorized file request modification. IBM X-Force ID: 275109.
Affected configurations
Node
ibmpowerscMatch1.3
ORibmpowerscMatch2.0
ORibmpowerscMatch2.1
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "PowerSC",
"vendor": "IBM",
"versions": [
{
"status": "affected",
"version": "1.3, 2.0, 2.1"
}
]
}
]Related
cnvd
cnvd
IBM PowerSC Explains Conflict Vulnerabilities
2024-02-22 00:00:00
prion
prion
Design/Logic Flaw
2024-02-02 01:15:00
vulnrichment
vulnrichment
CVE-2023-50327 IBM PowerSC weak security
2024-02-02 01:00:10
cvelist
cvelist
CVE-2023-50327 IBM PowerSC weak security
2024-02-02 01:00:10
nvd
nvd
CVE-2023-50327
2024-02-02 01:15:07
ibm
ibm
Security Bulletin: Multiple vulnerabilities affect PowerSC and PowerSC MFA
2024-02-05 20:23:16
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
AI Score
5.1
Confidence
High
EPSS
0.001
Percentile
24.8%
Related for CVE-2023-50327