EUVD-2023-41844

🗓️ 04 Feb 2026 20:44:04Reported by EUVDType

IBM Cloud Pak System has cross-site scripting in the Web UI enabling arbitrary JavaScript and credential exposure.

Reporter	Title	Published	Views	Family All 9
ATTACKERKB	CVE-2023-38017	4 Feb 202620:44	–	attackerkb
CNNVD	IBM Cloud Pak System 安全漏洞	4 Feb 202600:00	–	cnnvd
CVE	CVE-2023-38017	4 Feb 202620:44	–	cve
Cvelist	CVE-2023-38017 Multiple Vulnerabilities in IBM Cloud Pak System	4 Feb 202620:44	–	cvelist
NVD	CVE-2023-38017	4 Feb 202621:15	–	nvd
OSV	CVE-2023-38017	4 Feb 202621:15	–	osv
Positive Technologies	PT-2026-5863	4 Feb 202600:00	–	ptsecurity
RedhatCVE	CVE-2023-38017	6 Feb 202601:25	–	redhatcve
Vulnrichment	CVE-2023-38017 Multiple Vulnerabilities in IBM Cloud Pak System	4 Feb 202620:44	–	vulnrichment

[
  {
    "enisaIdVendor": [
      {
        "id": "b4a74e22-a2d6-35a2-a816-adc6fbc2e178",
        "vendor": {
          "name": "IBM"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "01b22beb-9b00-33b7-8b0e-ad112bec91d7",
        "product": {
          "name": "OS Image for Red Hat Linux Systems"
        },
        "product_version": "5.0.1.0"
      },
      {
        "id": "12cfbc68-0382-3a23-805c-240442e1ac5e",
        "product": {
          "name": "Cloud Pak System"
        },
        "product_version": "2.3.4.1 Interim Fix 001"
      },
      {
        "id": "1d0c5893-4a9a-3cfb-a8cf-7c94aef1ea4e",
        "product": {
          "name": "Cloud Pak System"
        },
        "product_version": "2.3.5.0"
      },
      {
        "id": "2f81690f-d8e6-35bd-b073-9b491021b3d4",
        "product": {
          "name": "OS Image for Red Hat Linux Systems"
        },
        "product_version": "5.0.0.0"
      },
      {
        "id": "37fb65a9-ebf0-3688-ad1f-b540b1d449ba",
        "product": {
          "name": "OS Image for Red Hat Linux Systems"
        },
        "product_version": "4.0.5.0"
      },
      {
        "id": "4cc8cebf-a8ee-3e7d-a159-017c06c6ee45",
        "product": {
          "name": "OS Image for Red Hat Linux Systems"
        },
        "product_version": "4.0.4.0"
      },
      {
        "id": "69042c87-4402-33e0-8a54-9c759bd39217",
        "product": {
          "name": "OS Image for Red Hat Linux Systems"
        },
        "product_version": "4.0.7.0"
      },
      {
        "id": "97ff68c8-5ea5-3679-944c-728237fb66ce",
        "product": {
          "name": "OS Image for Red Hat Linux Systems"
        },
        "product_version": "4.0.6.0"
      },
      {
        "id": "99eac622-b7c7-32de-ba47-1fb945fed59a",
        "product": {
          "name": "Cloud Pak System"
        },
        "product_version": "2.3.4.1"
      },
      {
        "id": "9e8c90a9-ad89-39f2-8335-e472412ea8c8",
        "product": {
          "name": "Cloud Pak System"
        },
        "product_version": "2.3.4.0"
      },
      {
        "id": "fc9e4e0a-7491-3b55-9f76-3ff11e4fa770",
        "product": {
          "name": "Cloud Pak System"
        },
        "product_version": "2.3.6.0"
      }
    ]
  }
]

Source	Link
nvd	www.nvd.nist.gov/vuln/detail/CVE-2023-38017
ibm	www.ibm.com/support/pages/node/7254419

04 Feb 2026 20:46Current

5Medium risk

Vulners AI Score5

CVSS 3.15.3

EPSS0.00013

SSVC