CVE-2023-40683
CVSS 3.1 Score 8.8 of 10 (high)
Details
Summary
CVE-2023-40683: IBM OpenPages with Watson versions 8.3 and 9.0 contain a vulnerability that enables unauthorized administrative access. An attacker can authenticate as an OpenPages user and exploit insufficient authorization checks to use non-public APIs, bypassing security restrictions and gaining privileged access to the application (IBM X-Force ID: 264005). This vulnerability poses a significant risk, allowing unauthorized individuals to manipulate data and potentially compromise sensitive information within the system. IBM urges users to upgrade to a patched version as soon as possible to mitigate this threat.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Affected Vendors
- IBM Corporation