Cloud Pak System Security Vulnerabilities and Issues — Cloud Pak System CVE List

Lucene search

IbmCloud Pak System

3 matches found

CVE•added 2025/03/27 6:17 p.m.•46 views

CVE-2023-37405

IBM Cloud Pak System 2.3.3.0, 2.3.3.3, 2.3.3.3 iFix1, 2.3.3.4, 2.3.3.5, 2.3.3.6, 2.3.36 iFix1, 2.3.3.6 iFix2, 2.3.3.7, 2.3.3.7 iFix1, 2.3.4.0, and 2.3.4.1 stores sensitive data in memory, that could be obtained by an unauthorized user.

6.5CVSS6.3AI score0.00016EPSS

CVE•added 2025/01/25 2:15 p.m.•44 views

CVE-2023-38271

IBM Cloud Pak System 2.3.3.0, 2.3.3.3, 2.3.3.3 iFix1, 2.3.3.4, 2.3.3.5, 2.3.3.6, 2.3.3.6 iFix1, 2.3.3.6 iFix2, 2.3.3.7, and 2.3.3.7 iFix1 could allow an authenticated user to obtain sensitive information from log files.

6.5CVSS4.3AI score0.00044EPSS

CVE•added 2021/01/04 2:15 p.m.•26 views

CVE-2020-4928

IBM Cloud Pak System 2.3 could allow a local privileged attacker to upload arbitrary files. By intercepting the request and modifying the file extention, the attacker could execute arbitrary code on the server. IBM X-Force ID: 191705.

6.7CVSS7.1AI score0.00068EPSS