5.5
CVE-2023-23468
- EPSS 0.02%
- Veröffentlicht 27.06.2023 19:15:09
- Zuletzt bearbeitet 21.11.2024 07:46:15
- Quelle psirt@us.ibm.com
- CVE-Watchlists
- Unerledigt
LoginIBM Robotic Process Automation for Cloud Pak access control
IBM Robotic Process Automation for Cloud Pak 21.0.1 through 21.0.7.3 and 23.0.0 through 23.0.3 is vulnerable to insufficient security configuration which may allow creation of namespaces within a cluster. IBM X-Force ID: 244500.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Ibm ≫ Robotic Process Automation Version >= 21.0.1 <= 21.0.7.3
Ibm ≫ Robotic Process Automation Version >= 23.0.0 <= 23.0.3
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.02% | 0.061 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5.5 | 1.8 | 3.6 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
|
| psirt@us.ibm.com | 5.1 | 1.4 | 3.6 |
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N
|