CVE-2023-27557

Summary

IBM Counter Fraud Management for Safer Payments 6.1.0.00 through 6.1.1.02, 6.2.0.00 through 6.2.2.02, 6.3.0.00 through 6.3.1.02, 6.4.0.00 through 6.4.2.01, and 6.5.0.00 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 249192.

Affected Software

VendorProductVersion RangeStatus
IBMSafer Payments6.1.0.00 <= 6.1.1.02affected
IBMSafer Payments6.2.0.00 <= 6.2.2.02affected
IBMSafer Payments6.3.0.00 <= 6.3.1.02affected
IBMSafer Payments6.4.0.00 <= 6.4.2.01affected
IBMSafer Payments6.5.0.00affected

Weaknesses

  • CWE-327: CWE-327 Use of a Broken or Risky Cryptographic Algorithm

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References