CVE-2023-38275

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Oct 22, 2023

Updated: Oct 27, 2023

CWE ID 319

Summary

CVE-2023-38275 is a vulnerability affecting IBM Cognos Dashboards on Cloud Pak for Data version 4.7.0. This issue exposes sensitive information within container images, increasing the risk of subsequent attacks on the system. IBM's X-Force has identified this issue with the ID 260730. By leaving sensitive data accessible, an attacker could potentially gain unauthorized access or manipulate the system, leading to significant security concerns. IBM is advised to address this vulnerability promptly to prevent potential exploitation.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

IBM Corporation

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/r_Bjza
https://www.cve.org/CVERecord?id=CVE-2023-38275
https://nvd.nist.gov/vuln/detail/CVE-2023-38275

Back to Vulnerability Database

CVE-2023-38275

CVSS 3.1 Score 7.5 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations