Lucene search
IbmCVE-2023-27291HistoryMar 03, 2024 - 4:15 p.m.
CVE-2023-27291
2024-03-0316:15:49
CWE-319
ibm
web.nvd.nist.gov
60
ibm watson
cp4d
data stores
encryption
vulnerability
ibm x-force
nvd
cve-2023-27291
CVSS3
4.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:N/A:N
AI Score
4.4
Confidence
High
EPSS
0
Percentile
9.0%
IBM Watson CP4D Data Stores 4.6.0, 4.6.1, 4.6.2, and 4.6.3 does not encrypt sensitive or critical information before storage or transmission which could allow an attacker to obtain sensitive information. IBM X-Force ID: 248740.
Affected configurations
Node
ibmwatson_cp4d_data_storesMatch4.6.0
ORibmwatson_cp4d_data_storesMatch4.6.1
ORibmwatson_cp4d_data_storesMatch4.6.2
ORibmwatson_cp4d_data_storesMatch4.6.3
| Vendor | Product | Version | CPE |
|---|---|---|---|
| ibm | watson_cp4d_data_stores | 4.6.0 | cpe:2.3:a:ibm:watson_cp4d_data_stores:4.6.0:*:*:*:*:*:*:* |
| ibm | watson_cp4d_data_stores | 4.6.1 | cpe:2.3:a:ibm:watson_cp4d_data_stores:4.6.1:*:*:*:*:*:*:* |
| ibm | watson_cp4d_data_stores | 4.6.2 | cpe:2.3:a:ibm:watson_cp4d_data_stores:4.6.2:*:*:*:*:*:*:* |
| ibm | watson_cp4d_data_stores | 4.6.3 | cpe:2.3:a:ibm:watson_cp4d_data_stores:4.6.3:*:*:*:*:*:*:* |
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "Watson CP4D Data Stores",
"vendor": "IBM",
"versions": [
{
"status": "affected",
"version": "4.6.0, 4.6.1, 4.6.2, 4.6.3"
}
]
}
]Related
nvd
nvd
CVE-2023-27291
2024-03-03 16:15:49
vulnrichment
vulnrichment
CVE-2023-27291 IBM Watson CP4D Data Stores information disclosure
2024-03-03 15:39:55
cvelist
cvelist
CVE-2023-27291 IBM Watson CP4D Data Stores information disclosure
2024-03-03 15:39:55
ibm
ibm
prion
prion
Design/Logic Flaw
2024-03-03 16:15:00
CVSS3
4.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:N/A:N
AI Score
4.4
Confidence
High
EPSS
0
Percentile
9.0%
Related for CVE-2023-27291