Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/03/29 5:30 p.m.21 views

CVE-2023-37405

IBM Cloud Pak System 2.3.3.0, 2.3.3.3, 2.3.3.3 iFix1, 2.3.3.4, 2.3.3.5, 2.3.3.6, 2.3.36 iFix1, 2.3.3.6 iFix2, 2.3.3.7, 2.3.3.7 iFix1, 2.3.4.0, and 2.3.4.1 stores sensitive data in memory, that could be obtained by an unauthorized user...

6.5CVSS6.8AI score0.00215EPSS
Exploits0References3
OSV
OSV
added 2025/03/27 6:17 p.m.3 views

CVE-2023-37405

IBM Cloud Pak System 2.3.3.0, 2.3.3.3, 2.3.3.3 iFix1, 2.3.3.4, 2.3.3.5, 2.3.3.6, 2.3.36 iFix1, 2.3.3.6 iFix2, 2.3.3.7, 2.3.3.7 iFix1, 2.3.4.0, and 2.3.4.1 stores sensitive data in memory, that could be obtained by an unauthorized user...

6.5CVSS5.8AI score0.00215EPSS
Exploits0References1
NVD
NVD
added 2025/03/27 6:17 p.m.23 views

CVE-2023-37405

IBM Cloud Pak System 2.3.3.0, 2.3.3.3, 2.3.3.3 iFix1, 2.3.3.4, 2.3.3.5, 2.3.3.6, 2.3.36 iFix1, 2.3.3.6 iFix2, 2.3.3.7, 2.3.3.7 iFix1, 2.3.4.0, and 2.3.4.1 stores sensitive data in memory, that could be obtained by an unauthorized user...

6.5CVSS0.00215EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/03/27 5:20 p.m.25 views

CVE-2023-37405 IBM Cloud Pak System information disclosure

IBM Cloud Pak System 2.3.3.0, 2.3.3.3, 2.3.3.3 iFix1, 2.3.3.4, 2.3.3.5, 2.3.3.6, 2.3.36 iFix1, 2.3.3.6 iFix2, 2.3.3.7, 2.3.3.7 iFix1, 2.3.4.0, and 2.3.4.1 stores sensitive data in memory, that could be obtained by an unauthorized user...

6.5CVSS0.00215EPSS
Exploits0References1
CVE
CVE
added 2025/03/27 5:20 p.m.57 views

CVE-2023-37405

IBM Cloud Pak System stores sensitive data in memory across versions 2.3.3.0 through 2.3.4.1, enabling potential unauthorized access (information disclosure). The issue is documented as CVE-2023-37405 with CVSS v3.1 Base Score 6.5 (Impact: Confidentiality High, others None). Remediation: for Inte...

6.5CVSS6.3AI score0.00215EPSS
Exploits0References1Affected Software2
IBM Security Bulletins
IBM Security Bulletins
added 2025/03/27 1:51 a.m.14 views

Security Bulletin: IBM Cloud Pak System cli is vulnerable to sensitive information exposure

Summary IBM Cloud Pak System cli is vulnerable to sensitive information exposure. CVE-2023-37405, CVE-2023-38272 Vulnerability Details CVEID:CVE-2023-37405 DESCRIPTION: IBM Cloud Pak System stores sensitive data in memory, that could be obtained by an unauthorized user. CWE:CWE-311: Missing...

6.5CVSS6.2AI score0.00326EPSS
Exploits0Affected Software1
Rows per page
Query Builder