CVE-2023-38716

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Published Jan 25, 2025

CWE ID 209

Summary

CVE-2023-38716 is a vulnerability affecting multiple versions of IBM Cloud Pak System, including 2.3.3.6, 2.3.36 iFix1, 2.3.3.6 iFix2, 2.3.3.7, 2.3.3.7 iFix1, and 2.3.4.0. This issue allows an attacker to disclose sensitive information about the system, potentially aiding in further attacks against the affected system. The exact nature of the disclosed information is not clear, but it could include details that could be exploited for malicious purposes. IBM strongly recommends users upgrade to a patched version as soon as possible to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

IBM Corporation

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/sGybVe
https://www.cve.org/CVERecord?id=CVE-2023-38716
https://nvd.nist.gov/vuln/detail/CVE-2023-38716

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Measuring the US-China AI Gap

TerraStealerV2 and TerraLogger: Golden Chickens' New Malware Families Discovered

Uncovering MintsLoader With Recorded Future Malware Intelligence Hunting

Know What Matters

For Customers

For Partners

CVE-2023-38716

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations