CVE-2023-50955

CVSS 3.1 Score 2.4 of 10 (low)

Details

Published Feb 21, 2024
Updated: Feb 22, 2024
CWE ID 36

Summary

CVE-2023-50955 is a vulnerability in IBM InfoSphere Information Server 11.7 that could allow an authenticated privileged user to obtain the absolute path of the web server installation, potentially aiding in further attacks against the system. The base severity of this vulnerability is rated as LOW and it requires high privileges to exploit. It has a CVSS score of 2.4, indicating a relatively low level of risk. The confidentiality impact is also rated as LOW, and the attack vector is described as ADJACENT_NETWORK, meaning that an attacker would need to have access to the same network as the targeted system. IBM X-Force ID for this vulnerability is 275777. Remediation for this vulnerability should include implementing proper access controls and restricting privileged user access to sensitive information to mitigate potential risks.

Share

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-50955 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options