Vulnerability with Certifi (CVE-2023-37920) This vulnerability have been addressed in the latest ClevOS releases
CVEID:CVE-2023-37920
**DESCRIPTION:**An unspecified error with the removal of e-Tugra root certificate in Certifi has an unknown impact and attack vector.
CVSS Base score: 7.5
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/261639 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N)
Affected Product(s) | Version(s) |
---|---|
IBM Cloud Object System | 3.17.5.57 or Prior Release |
roduct(s) | Version Number | Remediation/Fix |
---|---|---|
IBM Cloud Object System | 3.17.5.79 | https://www.ibm.com/support/fixcentral/swg/selectFixes?parent=Software%20defined%20storage&product=ibm/StorageSoftware/IBM+Cloud+Object+Storage+System&release=3.17.5.79&platform=All&function=all |
None
CPE | Name | Operator | Version |
---|---|---|---|
ibm cloud object storage system | eq | 3.17 |