← voltar
CVE-2023-38369

IBM Security Access Manager Container information disclosure

CVSS 6.2 MEDIUMEPSS 0.5%CWE-521
IBM Security Access Manager Container 10.0.0.0 through 10.0.6.1 does not require that docker images should have strong passwords by default, which makes it easier for attackers to compromise user accounts. IBM X-Force ID: 261196.
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Produtos afetados
IBM · Security Verify Access ApplianceIBM · Security Verify Access Docker

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://seclists.org/fulldisclosure/2024/Nov/0https://exchange.xforce.ibmcloud.com/vulnerabilities/261196https://www.ibm.com/support/pages/node/7106586