3.3
CVE-2023-33833
- EPSS 0.02%
- Published 31.08.2023 13:15:42
- Last modified 21.11.2024 08:06:02
- Source psirt@us.ibm.com
- Teams watchlist Login
- Open Login
IBM Security Verify Information Queue 10.0.4 and 10.0.5 stores sensitive information in plain clear text which can be read by a local user. IBM X-Force ID: 256013.
Data is provided by the National Vulnerability Database (NVD)
Ibm ≫ Security Verify Information Queue Version10.0.4
Ibm ≫ Security Verify Information Queue Version10.0.5
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.02% | 0.034 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 3.3 | 1.8 | 1.4 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
|
| psirt@us.ibm.com | 2.9 | 1.4 | 1.4 |
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
|
CWE-311 Missing Encryption of Sensitive Data
The product does not encrypt sensitive or critical information before storage or transmission.