CVE-2023-26026 MEDIUM

CVE-2023-26026: IBM Planning Analytics Cartridge for Cloud Pak for Data information disclosure

Vendor Ibm
Product Planning Analytics Cartridge for Cloud Pak for Data
Weakness CWE-200 · Info exposure
Published July 19, 2023
Last update October 25, 2024

CVSS base score

5.3/10
Attack vector Network
Attack complexity Low
Privileges required None
User interaction None
Confidentiality Low
Integrity None

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

What the vulnerability does

01Description

Planning Analytics Cartridge for Cloud Pak for Data 4.0 exposes sensitive information in logs which could lead an attacker to exploit this vulnerability to conduct further attacks. IBM X-Force ID: 247896.

Key dates

02Disclosure timeline

July 19, 2023 CVE published
October 25, 2024 Record updated