CVE-2023-28953
3.1
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N
Summary
IBM Cognos Analytics on Cloud Pak for Data 4.0 could allow an attacker to make system calls that might compromise the security of the containers due to misconfigured security context. IBM X-Force ID: 251465.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| IBM | Cognos Analytics Cartridge for Cloud Pak for Data | 4.0 | affected |
Weaknesses
- 284 Improper Access Control
ADP Enrichment
CVE Program Container
Additional References
- https://www.ibm.com/support/pages/node/7006413
- https://exchange.xforce.ibmcloud.com/vulnerabilities/251465
- https://security.netapp.com/advisory/ntap-20230814-0001/
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
References
- https://www.ibm.com/support/pages/node/7006413
- https://exchange.xforce.ibmcloud.com/vulnerabilities/251465
- https://security.netapp.com/advisory/ntap-20230814-0001/
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.