CVE-2023-50955

IBM InfoSphere Information Server 11.7 could allow an authenticated privileged user to obtain the absolute path of the web server installation which could aid in further attacks against the system. IBM X-Force ID: 275777.

CVSS v3 2.4 LOW

2.4^/10

CVSS v3 : LOW

V3 Legend

Vector :

Exploitability : 0.9 / Impact : 1.4

Attack Vector ADJACENT_NETWORK

Attack Complexity LOW

Privileges Required HIGH

User Interaction NONE

Confidentiality Impact LOW

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

References

Link	Resource
https://exchange.xforce.ibmcloud.com/vulnerabilities/275777
https://www.ibm.com/support/pages/node/7116610

Configurations

No configuration.

History

22 Feb 2024, 19:07

Type	Values Removed	Values Added
Summary		(es) IBM InfoSphere Information Server 11.7 podría permitir que un usuario privilegiado autenticado obtenga la ruta absoluta de la instalación del servidor web, lo que podría ayudar en futuros ataques contra el sistema. ID de IBM X-Force: 275777.

21 Feb 2024, 15:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-02-21 15:15

Updated : 2024-02-22 19:07

NVD link : CVE-2023-50955

Mitre link : CVE-2023-50955

CVE.ORG link : CVE-2023-50955

JSON object : View

Products Affected

No product.

CWE

CWE-36

Absolute Path Traversal

2.4 /10