CVE-2023-43035

Summary

IBM Sterling Control Center 6.2.1, 6.3.1, and 6.4.0 allows web pages to be stored locally which can be read by another user on the system.

Affected Software

VendorProductVersion RangeStatus
IBMSterling Control Center6.2.1affected
IBMSterling Control Center6.3.1affected
IBMSterling Control Center6.4.0affected

Weaknesses

  • CWE-525: CWE-525 Information Exposure Through Browser Caching

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References