CVE-2023-50955 LOW

CVE-2023-50955: IBM InfoSphere Information Server information disclosure

Vendor Ibm
Product InfoSphere Information Server
Weakness CWE-36
Published February 21, 2024
Last update August 2, 2024

CVSS base score

2.4/10
Attack vector Adjacent
Attack complexity Low
Privileges required High
User interaction None
Confidentiality Low
Integrity None

CVSS vector

CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N

What the vulnerability does

01Description

IBM InfoSphere Information Server 11.7 could allow an authenticated privileged user to obtain the absolute path of the web server installation which could aid in further attacks against the system. IBM X-Force ID: 275777.

Key dates

02Disclosure timeline

February 21, 2024 CVE published
August 2, 2024 Record updated