PT-2023-31530 · Ibm · Ibm Powersc

Publicado

2023-12-14

·

Atualizado

2024-02-02

·

CVE-2023-50328

CVSS v3.1

5.3

Média

VetorAV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Name of the Vulnerable Software and Affected Versions IBM PowerSC versions 1.3 through 2.1
Description The issue allows a remote attacker to view session identifiers passed via URL query strings.
Recommendations For IBM PowerSC versions 1.3 through 2.1, consider restricting access to sensitive session identifiers to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exposure of Resource to Wrong Sphere

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-598CWE-668

Identificadores relacionados

CVE-2023-50328

Produtos afetados

Ibm Powersc