CVE-2023-50955
2.4
CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N
Summary
IBM InfoSphere Information Server 11.7 could allow an authenticated privileged user to obtain the absolute path of the web server installation which could aid in further attacks against the system. IBM X-Force ID: 275777.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| IBM | InfoSphere Information Server | 11.7 | affected |
Weaknesses
- CWE-36: CWE-36 Absolute Path Traversal
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
CVE Program Container
Additional References
- https://www.ibm.com/support/pages/node/7116610
- https://exchange.xforce.ibmcloud.com/vulnerabilities/275777
References
- https://www.ibm.com/support/pages/node/7116610
- https://exchange.xforce.ibmcloud.com/vulnerabilities/275777
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.