Lucene search

K
debiancveDebian Security Bug TrackerDEBIANCVE:CVE-2023-43040
HistoryMay 14, 2024 - 1:46 p.m.

CVE-2023-43040

2024-05-1413:46:23
Debian Security Bug Tracker
security-tracker.debian.org
20
cve-2023-43040
improperly verified
post keys
unix

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

LOW

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:L

AI Score

6.6

Confidence

High

EPSS

0

Percentile

9.0%

IBM Spectrum Fusion HCI 2.5.2 through 2.7.2 could allow an attacker to perform unauthorized actions in RGW for Ceph due to improper bucket access. IBM X-Force ID: 266807.

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

LOW

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:L

AI Score

6.6

Confidence

High

EPSS

0

Percentile

9.0%