CVE-2023-50957

CVSS 3.1 Score 7.2 of 10 (high)

Details

Published Feb 10, 2024

Updated: Feb 15, 2024

CWE ID 269

Summary

CVE-2023-50957 is a vulnerability affecting IBM Storage Defender's Resiliency Service 2.0. This issue allows privileged users to execute unauthorized actions after gaining access to clear text key storage, which was previously encrypted. IBM X-Force has assigned this vulnerability the ID 275783. This security flaw poses a significant risk to IBM Storage Defender users, as it enables unauthorized users with privileged access to perform potentially harmful actions within the system. IBM is encouraged to provide a patch or mitigation strategy to address this vulnerability promptly.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

IBM Corporation

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/t0_Pyj
https://www.cve.org/CVERecord?id=CVE-2023-50957
https://nvd.nist.gov/vuln/detail/CVE-2023-50957

Back to Vulnerability Database

CVE-2023-50957

CVSS 3.1 Score 7.2 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations