Cloud Pak System Security Vulnerabilities and Issues — Cloud Pak System CVE List

Lucene search

IbmCloud Pak System

6 matches found

CVE•added 2025/01/25 2:15 p.m.•65 views

CVE-2023-38713

IBM Cloud Pak System 2.3.3.0, 2.3.3.3, 2.3.3.3 iFix1, 2.3.3.4, 2.3.3.5, 2.3.3.6, 2.3.3.6 iFix1, 2.3.3.6 iFix2, 2.3.3.7, and 2.3.3.7 iFix1 could disclose sensitive information about the system that could aid in further attacks against the system.

7.5CVSS5AI score0.00066EPSS

CVE•added 2025/01/25 2:15 p.m.•49 views

CVE-2023-38012

IBM Cloud Pak System 2.3.3.6, 2.3.3.6 iFix1, 2.3.3.6 iFix2, 2.3.3.7, 2.3.3.7 iFix1, and 2.3.4.0 could allow a remote attacker to traverse directories on the system. An attacker could send a specially crafted URL request containing "dot dot" sequences (/../) to view arbitrary files on the system.

5.3CVSS5.3AI score0.00063EPSS

CVE•added 2025/01/25 2:15 p.m.•46 views

CVE-2023-38271

IBM Cloud Pak System 2.3.3.0, 2.3.3.3, 2.3.3.3 iFix1, 2.3.3.4, 2.3.3.5, 2.3.3.6, 2.3.3.6 iFix1, 2.3.3.6 iFix2, 2.3.3.7, and 2.3.3.7 iFix1 could allow an authenticated user to obtain sensitive information from log files.

6.5CVSS4.3AI score0.00078EPSS

CVE•added 2025/01/25 2:15 p.m.•46 views

CVE-2023-38714

7.5CVSS5AI score0.00066EPSS

CVE•added 2025/01/25 2:15 p.m.•45 views

CVE-2023-38716

IBM Cloud Pak System 2.3.3.6, 2.3.36 iFix1, 2.3.3.6 iFix2, 2.3.3.7, 2.3.3.7 iFix1, and 2.3.4.0 could disclose sensitive information about the system that could aid in further attacks against the system.

7.5CVSS5AI score0.00046EPSS

CVE•added 2025/01/25 2:15 p.m.•42 views

CVE-2023-38013

IBM Cloud Pak System 2.3.3.0, 2.3.3.3, 2.3.3.3 iFix1, 2.3.3.4, 2.3.3.5, 2.3.3.6, 2.3.3.6 iFix1, 2.3.3.6 iFix2, 2.3.3.7, and 2.3.3.7 iFix1 could disclose sensitive information in HTTP responses that could aid in further attacks against the system.

7.5CVSS5.1AI score0.00066EPSS