Lucene search

PRIOn knowledge basePRION:CVE-2023-40683

HistoryJan 19, 2024 - 1:15 a.m.

Authorization

2024-01-1901:15:00

PRIOn knowledge base

www.prio-n.com

ibm

openpages

watson

8.3

9.0

vulnerability

security restrictions

authorization

remote attacker

administrative access

nvd

x-force id

7 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

32.3%

JSON

IBM OpenPages with Watson 8.3 and 9.0 could allow remote attacker to bypass security restrictions, caused by insufficient authorization checks. By authenticating as an OpenPages user and using non-public APIs, an attacker could exploit this vulnerability to bypass security and gain unauthorized administrative access to the application. IBM X-Force ID: 264005.

CPENameOperatorVersion
openpages_with_watsonge8.3
openpages_with_watsonlt8.3.0.2.7
openpages_with_watsoneq9.0

Name	Operator	Version
openpages_with_watson	ge	8.3
openpages_with_watson	lt	8.3.0.2.7
openpages_with_watson	eq	9.0

References

exchange.xforce.ibmcloud.com/vulnerabilities/264005

www.ibm.com/support/pages/node/7107774