CVE-2023-46170

Summary

CVE-2023-46170 is a vulnerability affecting IBM DS8900F HMC versions 89.21.19.0, 89.21.31.0, 89.30.68.0, 89.32.40.0, and 89.33.48.0 that allows an authenticated user to read files after enumerating file names. The vulnerability has a base severity of MEDIUM with a base score of 6.5 according to the CVSS:3.1 scoring system and a confidentiality impact rating of HIGH, posing a potential danger to organizations' sensitive information security. The exploitability score is 2.8 out of 10, indicating a moderate level of difficulty for attackers to exploit the vulnerability remotely over the network without requiring high privileges or user interaction. IBM X-Force ID for this vulnerability is 269407, and the Common Weakness Enumeration (CWE) category is CWE-200 (Information Exposure). No remediation steps or further details are provided in the source text for addressing this vulnerability at this time.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.