Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-23469

IBM ICP4A - Automation Decision Services 18.0.0, 18.0.1, 18.0.2, 19.0.1, 19.0.2, 19.0.3, 20.0.1, 20.0.2, 20.0.3, 21.0.1, 21.0.2, 21.0.3, 22.0.1, and 22.0.2 allows web pages to be stored locally which can be read by another user on the system. IBM X-Force ID: 244504.

Published

2023-02-01T19:15:08.690

Last Modified

2025-03-26T15:15:46.320

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 4.0 (MEDIUM)

Weaknesses

Type: Primary
NVD-CWE-noinfo
Type: Secondary
CWE-525

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	ibm	cloud_pak_for_business_automation	≤ 20.0.3	Yes
Application	ibm	cloud_pak_for_business_automation	21.0.1	Yes
Application	ibm	cloud_pak_for_business_automation	21.0.1	Yes
Application	ibm	cloud_pak_for_business_automation	21.0.1	Yes
Application	ibm	cloud_pak_for_business_automation	21.0.1	Yes
Application	ibm	cloud_pak_for_business_automation	21.0.1	Yes
Application	ibm	cloud_pak_for_business_automation	21.0.1	Yes
Application	ibm	cloud_pak_for_business_automation	21.0.1	Yes
Application	ibm	cloud_pak_for_business_automation	21.0.1	Yes
Application	ibm	cloud_pak_for_business_automation	21.0.2	Yes
Application	ibm	cloud_pak_for_business_automation	21.0.2	Yes
Application	ibm	cloud_pak_for_business_automation	21.0.2	Yes
Application	ibm	cloud_pak_for_business_automation	21.0.2	Yes
Application	ibm	cloud_pak_for_business_automation	21.0.2	Yes
Application	ibm	cloud_pak_for_business_automation	21.0.2	Yes
Application	ibm	cloud_pak_for_business_automation	21.0.2	Yes
Application	ibm	cloud_pak_for_business_automation	21.0.2	Yes
Application	ibm	cloud_pak_for_business_automation	21.0.2	Yes
Application	ibm	cloud_pak_for_business_automation	21.0.2	Yes
Application	ibm	cloud_pak_for_business_automation	21.0.2	Yes
Application	ibm	cloud_pak_for_business_automation	21.0.3	Yes
Application	ibm	cloud_pak_for_business_automation	21.0.3	Yes
Application	ibm	cloud_pak_for_business_automation	21.0.3	Yes
Application	ibm	cloud_pak_for_business_automation	21.0.3	Yes
Application	ibm	cloud_pak_for_business_automation	21.0.3	Yes
Application	ibm	cloud_pak_for_business_automation	21.0.3	Yes
Application	ibm	cloud_pak_for_business_automation	21.0.3	Yes
Application	ibm	cloud_pak_for_business_automation	21.0.3	Yes
Application	ibm	cloud_pak_for_business_automation	21.0.3	Yes
Application	ibm	cloud_pak_for_business_automation	22.0.2	Yes

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/244504 Broken Link ([email protected])
https://www.ibm.com/support/pages/node/6857999 Vendor Advisory ([email protected])
https://exchange.xforce.ibmcloud.com/vulnerabilities/244504 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
https://www.ibm.com/support/pages/node/6857999 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)