Vulnerability was addressed in IBM Cloud Pak for AIOps version 4.3.0 [CVE-2023-46233]
CVEID:CVE-2023-46233
**DESCRIPTION:**Brix crypto-js could allow a remote attacker to obtain sensitive information, caused by the use of a weak cryptographic hash algorithm. By utilize cryptographic attack techniques, an attacker could exploit this vulnerability to obtain sensitive information, and use this information to launch further attacks against the affected system.
CVSS Base score: 9.1
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/269753 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N)
Affected Product(s) | Version(s) |
---|---|
IBM Cloud Pak for AIOps | 4.3.0 |
IBM strongly suggests that you address the vulnerabilities now for all affected products/versions listed above by installing Fix:
<https://www.ibm.com/docs/SSJGDOB_4.3.0/upgrading/upgrading.html>
None
CPE | Name | Operator | Version |
---|---|---|---|
ibm cloud pak for aiops | eq | 4.3.0 |