CVE-2023-50948

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Jan 8, 2024

Updated: Jan 11, 2024

CWE ID 798

CWE ID 259

Summary

CVE-2023-50948 is a vulnerability affecting IBM Storage Fusion HCI versions 2.1.0 to 2.6.1. The issue involves hard-coded credentials being used for inbound authentication, outbound communication, and data encryption within the system. IBM's X-Force has assigned the ID 275671 to this issue. These hard-coded credentials, which can include passwords or cryptographic keys, pose a significant risk as they are not changed during installation or configuration, creating an opportunity for unauthorized access and potential data breaches.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

IBM Corporation

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/t0-iBj
https://www.cve.org/CVERecord?id=CVE-2023-50948
https://nvd.nist.gov/vuln/detail/CVE-2023-50948

Back to Vulnerability Database

CVE-2023-50948

CVSS 3.1 Score 9.8 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations