CVE-2023-50940

Name of the Vulnerable Software and Affected Versions: IBM PowerSC versions 1.3 through 2.1

Description: The issue is related to the use of Cross-Origin Resource Sharing (CORS) in IBM PowerSC, which could allow an attacker to carry out privileged actions and retrieve sensitive information. This is because the domain name is not limited to only trusted domains.

Recommendations: For IBM PowerSC versions 1.3 through 2.1, consider restricting access to trusted domains to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.