PT-2024-11985 · Ibm · Infosphere Data Flow Designer

Published

2024-12-11

Updated

2025-03-11

CVE-2023-23472

CVSS v3.1

6.5

Medium

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions IBM InfoSphere DataStage Flow Designer (InfoSphere Information Server 11.7)

Description The issue allows an authenticated user to obtain sensitive information that could aid in further attacks against the system.

Recommendations For IBM InfoSphere DataStage Flow Designer (InfoSphere Information Server 11.7), visit the official IBM support page for remediation steps to update the system and mitigate risks. As a temporary workaround, consider restricting access to sensitive information within the system until a patch is available.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-497

Related Identifiers

CVE-2023-23472

Affected Products

Infosphere Data Flow Designer

PT-2024-11985 · Ibm · Infosphere Data Flow Designer

CVE-2023-23472

Weakness Enumeration

Related Identifiers

Affected Products

References · 12