PT-2023-5223 · Ibm · Ibm Security Verify Information Queue

Ben Goodspeed

Publicado

2023-08-31

Atualizado

2023-09-01

CVE-2023-33833

CVSS v3.1

3.3

Baixa

Vetor

AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Name of the Vulnerable Software and Affected Versions IBM Security Verify Information Queue versions 10.0.4 through 10.0.5

Description The issue is related to the storage of sensitive information in plain clear text, which can be accessed by a local user. This is due to a lack of encryption measures. Exploitation of this issue may allow an attacker to gain access to confidential information.

Recommendations For versions 10.0.4 and 10.0.5, update to a version that properly encrypts sensitive information to prevent unauthorized access. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Missing Encryption of Sensitive Data

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-311

Identificadores relacionados

BDU:2023-05831

CVE-2023-33833

Produtos afetados

Ibm Security Verify Information Queue

PT-2023-5223 · Ibm · Ibm Security Verify Information Queue

CVE-2023-33833

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 6