CVSS: 7.5EPSS: 0%CPEs: 4EXPL: 0CVE-2023-38273 – IBM Cloud Pak System information disclosure
https://notcve.org/view.php?id=CVE-2023-38273
IBM Cloud Pak System 2.3.1.1, 2.3.2.0, and 2.3.3.7 uses an inadequate account lockout setting that could allow a remote attacker to brute force account credentials. IBM X-Force ID: 260733. IBM Cloud Pak System 2.3.1.1, 2.3.2.0 y 2.3.3.7 utiliza una configuración de bloqueo de cuenta inadecuada que podría permitir a un atacante remoto utilizar fuerza bruta en las credenciales de la cuenta. ID de IBM X-Force: 260733. • https://exchange.xforce.ibmcloud.com/vulnerabilities/260733 https://www.ibm.com/support/pages/node/7105357 • CWE-307: Improper Restriction of Excessive Authentication Attempts •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2023-47148 – IBM Storage Protect Plus Server information disclosure
https://notcve.org/view.php?id=CVE-2023-47148
IBM Storage Protect Plus Server 10.1.0 through 10.1.15.2 Admin Console could allow a remote attacker to obtain sensitive information due to improper validation of unsecured endpoints which could be used in further attacks against the system. • https://exchange.xforce.ibmcloud.com/vulnerabilities/270599 https://www.ibm.com/support/pages/node/7096482 • CWE-862: Missing Authorization •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2023-49118 – Dsoftbus has an out-of-bounds read vulnerability
https://notcve.org/view.php?id=CVE-2023-49118
in OpenHarmony v3.2.4 and prior versions allow a local attacker causes information leak through out-of-bounds Read. • https://gitee.com/openharmony/security/blob/master/zh/security-disclosure/2024/2024-02.md • CWE-125: Out-of-bounds Read •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2023-43756 – Dsoftbus has an out-of-bounds read vulnerability
https://notcve.org/view.php?id=CVE-2023-43756
in OpenHarmony v3.2.4 and prior versions allow a local attacker causes information leak through out-of-bounds Read. • https://gitee.com/openharmony/security/blob/master/zh/security-disclosure/2024/2024-02.md • CWE-125: Out-of-bounds Read •
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0CVE-2023-50962 – IBM PowerSC information disclosure
https://notcve.org/view.php?id=CVE-2023-50962
IBM PowerSC 1.3, 2.0, and 2.1 MFA does not implement the "HTTP Strict Transport Security" (HSTS) web security policy mechanism. IBM X-Force ID: 276004. IBM PowerSC 1.3, 2.0 y 2.1 MFA no implementa el mecanismo de política de seguridad web "HTTP Strict Transport Security" (HSTS). ID de IBM X-Force: 276004. • https://exchange.xforce.ibmcloud.com/vulnerabilities/276004 https://www.ibm.com/support/pages/node/7113759 • CWE-319: Cleartext Transmission of Sensitive Information •