CVSS 3.1 Score 7.5 of 10 (high)


Published Jul 19, 2023
Updated: Jul 28, 2023
CWE ID 287
CWE ID 200


CVE-2023-27877 is a vulnerability in IBM Planning Analytics Cartridge for Cloud Pak for Data 4.0, which connects to a CouchDB server. The vulnerability allows an attacker to exploit an insecure password policy on the CouchDB server and gain access to sensitive information stored in the database. This vulnerability has a high base severity rating and poses a potential danger to organizations as it could lead to unauthorized access and exposure of confidential data. To remediate this vulnerability, organizations should ensure that the password policy for the CouchDB server is properly configured and strengthened to prevent unauthorized access.

Leverage our Vulnerability Intelligence module to secure your systems now - get detailed insights on CVE-2024-37364. Book your demo today.


Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-27877 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options