CVE-2023-46175 – IBM Cloud Pak for Multicloud Management information disclosure
https://notcve.org/view.php?id=CVE-2023-46175
IBM Cloud Pak for Multicloud Management 2.3 through 2.3 FP8 stores user credentials in a log file plain clear text which can be read by a privileged user. • https://www.ibm.com/support/pages/node/7170411 • CWE-532: Insertion of Sensitive Information into Log File •
CVE-2020-4765
https://notcve.org/view.php?id=CVE-2020-4765
IBM Cloud Pak for Multicloud Management prior to 2.3 allows web pages to be stored locally which can be read by another user on the system. IBM X-Force ID: 188902. IBM Cloud Pak for Multicloud Management anterior a versión 2.3, permite a unas páginas web ser almacenadas localmente para que pueda ser leídas por otro usuario en el sistema. IBM X-Force ID: 188902 • https://exchange.xforce.ibmcloud.com/vulnerabilities/188902 https://www.ibm.com/support/pages/node/6454019 • CWE-922: Insecure Storage of Sensitive Information •