CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 1CVE-2023-45184 – IBM i Access Client Solutions
https://notcve.org/view.php?id=CVE-2023-45184
IBM i Access Client Solutions 1.1.2 through 1.1.4 and 1.1.4.3 through 1.1.9.3 could allow an attacker to obtain a decryption key due to improper authority checks. IBM X-Force ID: 268270. IBM i Access Client Solutions versiones 1.1.2 a 1.1.4 y 1.1.4.3 a 1.1.9.3 podrían permitir a un atacante obtener una clave de descifrado debido a comprobaciones de autoridad inadecuadas. ID de IBM X-Force: 268270. • https://github.com/afine-com/CVE-2023-45184 https://exchange.xforce.ibmcloud.com/vulnerabilities/268270 https://www.ibm.com/support/pages/node/7091942 • CWE-922: Insecure Storage of Sensitive Information •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2023-43042 – IBM Storage Virtualize information disclosure
https://notcve.org/view.php?id=CVE-2023-43042
IBM SAN Volume Controller, IBM Storwize, IBM FlashSystem and IBM Storage Virtualize 8.3 products use default passwords for a privileged user. IBM X-Force ID: 266874. Los productos IBM SAN Volume Controller, IBM Storwize, IBM FlashSystem e IBM Storage Virtualize 8.3 utilizan contraseñas predeterminadas para un usuario privilegiado. ID de IBM X-Force: 266874. • https://exchange.xforce.ibmcloud.com/vulnerabilities/266874 https://https://www.ibm.com/support/pages/node/7064976 • CWE-1393: Use of Default Password •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2022-43843 – IBM Spectrum Scale information disclosure
https://notcve.org/view.php?id=CVE-2022-43843
IBM Spectrum Scale 5.1.5.0 through 5.1.5.1 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 239080. IBM Spectrum Scale 5.1.5.0 a 5.1.5.1 utiliza algoritmos criptográficos más débiles de lo esperado que podrían permitir a un atacante descifrar información altamente confidencial. ID de IBM X-Force: 239080. • https://exchange.xforce.ibmcloud.com/vulnerabilities/239080 https://https://www.ibm.com/support/pages/node/7094941 https://www.ibm.com/support/pages/node/7094941 • CWE-327: Use of a Broken or Risky Cryptographic Algorithm •
CVSS: 8.4EPSS: 0%CPEs: 3EXPL: 0CVE-2023-45170 – IBM AIX privilege escalation
https://notcve.org/view.php?id=CVE-2023-45170
IBM AIX 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the piobe command to escalate privileges or cause a denial of service. IBM X-Force ID: 267968. IBM AIX 7.2, 7.3 y VIOS 3.1 podrían permitir que un usuario local sin privilegios aproveche una vulnerabilidad en el comando piobe para escalar privilegios o provocar una denegación de servicio. ID de IBM X-Force: 267968. • https://exchange.xforce.ibmcloud.com/vulnerabilities/267968 https://www.ibm.com/support/pages/node/7095022 •
CVSS: 8.4EPSS: 0%CPEs: 3EXPL: 0CVE-2023-45174 – IBM AIX privilege escalation
https://notcve.org/view.php?id=CVE-2023-45174
IBM AIX 7.2, 7.3, and VIOS 3.1 could allow a privileged local user to exploit a vulnerability in the qdaemon command to escalate privileges or cause a denial of service. IBM X-Force ID: 267972. IBM AIX 7.2, 7.3 y VIOS 3.1 podrían permitir que un usuario local privilegiado aproveche una vulnerabilidad en el comando qdaemon para escalar privilegios o provocar una denegación de servicio. ID de IBM X-Force: 267972. • https://exchange.xforce.ibmcloud.com/vulnerabilities/267972 https://www.ibm.com/support/pages/node/7095022 •