Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-50959

IBM Cloud Pak for Business Automation 18.0.0, 18.0.1, 18.0.2,19.0.1, 19.0.2, 19.0.3,20.0.1, 20.0.2, 20.0.3, 21.0.1, 21.0.2, 21.0.3, 22.0.1,2 2.0.2, 23.0.1, and 23.0.2 may allow end users to query more documents than expected from a connected Enterprise Content Management system when configured to use a system account. IBM X-Force ID: 275938.

Published

2024-03-31T12:15:50.130

Last Modified

2024-11-21T08:37:36.643

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 5.3 (MEDIUM)

Weaknesses
  • Type: Secondary
    CWE-497
  • Type: Primary
    NVD-CWE-Other
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Application ibm cloud_pak_for_business_automation 18.0.0 Yes
Application ibm cloud_pak_for_business_automation 18.0.1 Yes
Application ibm cloud_pak_for_business_automation 18.0.2 Yes
Application ibm cloud_pak_for_business_automation 19.0.1 Yes
Application ibm cloud_pak_for_business_automation 19.0.2 Yes
Application ibm cloud_pak_for_business_automation 19.0.3 Yes
Application ibm cloud_pak_for_business_automation 20.0.1 Yes
Application ibm cloud_pak_for_business_automation 20.0.2 Yes
Application ibm cloud_pak_for_business_automation 20.0.3 Yes
Application ibm cloud_pak_for_business_automation 21.0.1 Yes
Application ibm cloud_pak_for_business_automation 21.0.2 Yes
Application ibm cloud_pak_for_business_automation 21.0.3 Yes
Application ibm cloud_pak_for_business_automation 22.0.1 Yes
Application ibm cloud_pak_for_business_automation 22.0.2 Yes
Application ibm cloud_pak_for_business_automation 23.0.1 Yes
Application ibm cloud_pak_for_business_automation 23.0.2 Yes
References