CVE-2023-47704

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Dec 20, 2023
Updated: Dec 22, 2023
CWE ID 798

Summary

The vulnerability with the CVE ID name CVE-2023-47704 affects IBM Security Guardium Key Lifecycle Manager 4.3. It is caused by the presence of plain text hard-coded credentials or other secrets in the source code repository. This vulnerability has a base severity rating of HIGH, with a base score of 7.5 out of 10. The potential danger it poses to an organization is classified as HIGH for confidentiality impact, with no integrity or availability impact. The exploitability score is 3.9 out of 10, indicating a moderate level of difficulty for exploitation. To remediate this vulnerability, organizations using IBM Security Guardium Key Lifecycle Manager 4.3 should update their software to remove the hard-coded credentials and secrets from the source code repository to mitigate potential unauthorized access or misuse of sensitive information.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-47704 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options