CVE-2023-38267 | IBM Security Verify Access Appliance up to 10.0.6.1 Configuration missing encryption (XFDB-260584)

Posted by Angelo Barbosa | Jan 11, 2024 | CVE

A vulnerability was found in IBM Security Verify Access Appliance and Security Verify Access Docker up to 10.0.6.1. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component Configuration Handler. The manipulation leads to missing encryption of sensitive data.

This vulnerability is known as CVE-2023-38267. An attack has to be approached locally. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-38267 | IBM Security Verify Access Appliance up to 10.0.6.1 Configuration missing encryption (XFDB-260584)

Related Posts

CVE-2024-32746 | WonderCMS 3.4.3 Menu Module MENU cross site scripting

CVE-2024-1853 | Zemena AntiLogger 2.74.204.664 IOCTL zam64.sys unverified ownership

CVE-2024-32690 | Fahad Mahmood RSS Feed Widget Plugin up to 2.9.7 on WordPress cross site scripting

CVE-2024-2697 | WP-FeedStats socialdriver-framework Plugin prior 2024.0.0 on WordPress Shortcode Attribute cross site scripting