How severe is CVE-2023-26272?

CVE-2023-26272 has a CVSS v3 score of 5.3 (MEDIUM).

CVE-2023-26272

Name: guardium_cloud_key_manager
Author: ibm

5.3MEDIUM

IBM Security Guardium Data Encryption (IBM Guardium Cloud Key Manager (GCKM) 1.10.3)) could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned

Published: 8/28/2023Updated: 11/21/2024

Description

IBM Security Guardium Data Encryption (IBM Guardium Cloud Key Manager (GCKM) 1.10.3)) could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. IBM X-Force ID: 248133.

AI AnalysisPowered by AI

Affected Products

ibmguardium_cloud_key_manager

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/248133
VDB EntryVendor Advisory
https://www.ibm.com/support/pages/node/6995161
PatchVendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/248133
VDB EntryVendor Advisory
https://www.ibm.com/support/pages/node/6995161
PatchVendor Advisory