Lucene search
IbmVULNRICHMENT:CVE-2023-33837HistoryOct 23, 2023 - 7:47 p.m.
CVE-2023-33837 IBM Security Verify Governance information disclosure
2023-10-2319:47:41
CWE-319
ibm
github.com
1
ibm security verify
governance
data encryption
information disclosure
ibm x-force id
CVSS3
4.1
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N
AI Score
7.2
Confidence
High
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
IBM Security Verify Governance 10.0 does not encrypt sensitive or critical information before storage or transmission. IBM X-Force ID: 256020.
Related
nvd
nvd
CVE-2023-33837
2023-10-23 20:15:08
cvelist
cvelist
CVE-2023-33837 IBM Security Verify Governance information disclosure
2023-10-23 19:47:41
prion
prion
Code injection
2023-10-23 20:15:00
cnvd
cnvd
IBM Security Verify Governance Plaintext Transfer Vulnerability
2023-10-26 00:00:00
cve
cve
CVE-2023-33837
2023-10-23 20:15:08
ibm
ibm
CVSS3
4.1
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N
AI Score
7.2
Confidence
High
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
Related for VULNRICHMENT:CVE-2023-33837