CVE-2023-38276

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Oct 22, 2023

Updated: Oct 27, 2023

CWE ID 319

Summary

CVE-2023-38276 is a vulnerability affecting IBM Cognos Dashboards on Cloud Pak for Data version 4.7.0. This issue exposes sensitive information in environment variables, which could be exploited to launch additional attacks against the system. IBM's X-Force has assigned ID 260736 to this vulnerability. Organizations using this software are advised to address this issue promptly to prevent potential data exposure and further security risks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

IBM Corporation

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/r_BWrc
https://www.cve.org/CVERecord?id=CVE-2023-38276
https://nvd.nist.gov/vuln/detail/CVE-2023-38276

Back to Vulnerability Database

CVE-2023-38276

CVSS 3.1 Score 7.5 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations