7.5
CVE-2023-49883
- EPSS 0.03%
- Veröffentlicht 01.10.2025 17:15:37
- Zuletzt bearbeitet 03.10.2025 17:38:45
- Quelle psirt@us.ibm.com
- CVE-Watchlists
- Unerledigt
IBM Transformation Extender Advanced information disclosure
IBM Transformation Extender Advanced 10.0.1 does not require that users should have strong passwords by default, which makes it easier for attackers to compromise user accounts.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Ibm ≫ Transformation Extender Advanced Version10.0.1
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. 
Login
Login| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.03% | 0.082 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 3.9 | 3.6 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
|
| psirt@us.ibm.com | 5.9 | 2.2 | 3.6 |
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
|
CWE-521 Weak Password Requirements
The product does not require that users should have strong passwords, which makes it easier for attackers to compromise user accounts.