CVE-2023-40363

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Nov 18, 2023

Updated: Nov 29, 2023

CWE ID 276

Summary

CVE-2023-40363 is a vulnerability affecting IBM InfoSphere Information Server 11.7. An authenticated user can exploit this issue by changing installation files due to incorrect file permission settings. This vulnerability, identified as IBM X-Force ID: 263332, poses a risk to the integrity of the IBM InfoSphere Information Server installation. If exploited, an attacker may be able to install unauthorized software or modify existing configurations. IBM recommends users apply the available patch to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

IBM Infosphere Information Server

Affected Vendors

IBM Corporation

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/sWEg7F
https://www.cve.org/CVERecord?id=CVE-2023-40363
https://nvd.nist.gov/vuln/detail/CVE-2023-40363

Back to Vulnerability Database