PT-2023-24513 · Ibm · Ibm Spss Modeler

Published

2023-06-22

Updated

2023-06-28

CVE-2023-33842

CVSS v3.1

6.2

Medium

Vector

AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions IBM SPSS Modeler on Windows versions 17.0 through 18.5

Description The issue allows a local user to decrypt and obtain sensitive information because the end user has access to the server SSL key.

Recommendations For versions 17.0 through 18.5, restrict access to the server SSL key to prevent local users from decrypting and obtaining sensitive information.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2023-33842

Affected Products

Ibm Spss Modeler

PT-2023-24513 · Ibm · Ibm Spss Modeler

CVE-2023-33842

Related Identifiers

Affected Products

References · 6