Lucene search
IbmCVELIST:CVE-2023-50935HistoryFeb 02, 2024 - 1:12 a.m.
CVE-2023-50935 IBM PowerSC forced browsing
2024-02-0201:12:54
CWE-425
ibm
www.cve.org
2
ibm
powersc
access restriction
vulnerability
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
AI Score
6.3
Confidence
High
EPSS
0.001
Percentile
32.2%
IBM PowerSC 1.3, 2.0, and 2.1 fails to properly restrict access to a URL or resource, which may allow a remote attacker to obtain unauthorized access to application functionality and/or resources. IBM X-Force ID: 275115.
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "PowerSC",
"vendor": "IBM",
"versions": [
{
"status": "affected",
"version": "1.3, 2.0, 2.1"
}
]
}
]Related
prion
prion
Code injection
2024-02-02 02:15:00
vulnrichment
vulnrichment
CVE-2023-50935 IBM PowerSC forced browsing
2024-02-02 01:12:54
cve
cve
CVE-2023-50935
2024-02-02 02:15:17
nvd
nvd
CVE-2023-50935
2024-02-02 02:15:17
ibm
ibm
Security Bulletin: Multiple vulnerabilities affect PowerSC and PowerSC MFA
2024-02-05 20:23:16
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
AI Score
6.3
Confidence
High
EPSS
0.001
Percentile
32.2%
Related for CVELIST:CVE-2023-50935