IBM Cloud Pak System 2.3.3.0, 2.3.3.3, 2.3.3.3 iFix1, 2.3.3.4, 2.3.3.5, 2.3.3.6, 2.3.36 iFix1, 2.3.3.6 iFix2, 2.3.3.7, 2.3.3.7 iFix1, 2.3.4.0, and 2.3.4.1
could allow a user with access to the network to obtain sensitive information from CLI arguments.
The product does not adequately verify the identity of actors at both ends of a communication channel, or does not adequately ensure the integrity of the channel, in a way that allows the channel to be accessed or influenced by an actor that is not an endpoint.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Cloud_pak_system | Ibm | 2.3.1.1 (including) | 2.3.1.1 (including) |
| Cloud_pak_system | Ibm | 2.3.3.0 (including) | 2.3.3.0 (including) |
| Cloud_pak_system | Ibm | 2.3.3.3 (including) | 2.3.3.3 (including) |
| Cloud_pak_system | Ibm | 2.3.3.3-ifix1 (including) | 2.3.3.3-ifix1 (including) |
| Cloud_pak_system | Ibm | 2.3.3.4 (including) | 2.3.3.4 (including) |
| Cloud_pak_system | Ibm | 2.3.3.5 (including) | 2.3.3.5 (including) |
| Cloud_pak_system | Ibm | 2.3.3.6 (including) | 2.3.3.6 (including) |
| Cloud_pak_system | Ibm | 2.3.3.6-ifix1 (including) | 2.3.3.6-ifix1 (including) |
| Cloud_pak_system | Ibm | 2.3.3.6-ifix2 (including) | 2.3.3.6-ifix2 (including) |
| Cloud_pak_system | Ibm | 2.3.3.7 (including) | 2.3.3.7 (including) |
| Cloud_pak_system | Ibm | 2.3.3.7-ifix1 (including) | 2.3.3.7-ifix1 (including) |
| Cloud_pak_system | Ibm | 2.3.4.0 (including) | 2.3.4.0 (including) |
| Cloud_pak_system | Ibm | 2.3.4.1 (including) | 2.3.4.1 (including) |