CVE Vulnerabilities

CVE-2023-50959

Published: Mar 31, 2024 | Modified: Apr 02, 2024
CVSS 3.x
6.5
MEDIUM
Source:
NVD
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu

IBM Cloud Pak for Business Automation 18.0.0, 18.0.1, 18.0.2,19.0.1, 19.0.2, 19.0.3,20.0.1, 20.0.2, 20.0.3, 21.0.1, 21.0.2, 21.0.3, 22.0.1,2 2.0.2, 23.0.1, and 23.0.2 may allow end users to query more documents than expected from a connected Enterprise Content Management system when configured to use a system account. IBM X-Force ID: 275938.

Affected Software

Name Vendor Start Version End Version
Cloud_pak_for_business_automation Ibm 18.0.0 (including) 18.0.0 (including)
Cloud_pak_for_business_automation Ibm 18.0.1 (including) 18.0.1 (including)
Cloud_pak_for_business_automation Ibm 18.0.2 (including) 18.0.2 (including)
Cloud_pak_for_business_automation Ibm 19.0.1 (including) 19.0.1 (including)
Cloud_pak_for_business_automation Ibm 19.0.2 (including) 19.0.2 (including)
Cloud_pak_for_business_automation Ibm 19.0.3 (including) 19.0.3 (including)
Cloud_pak_for_business_automation Ibm 20.0.1 (including) 20.0.1 (including)
Cloud_pak_for_business_automation Ibm 20.0.2 (including) 20.0.2 (including)
Cloud_pak_for_business_automation Ibm 20.0.3 (including) 20.0.3 (including)
Cloud_pak_for_business_automation Ibm 21.0.1 (including) 21.0.1 (including)
Cloud_pak_for_business_automation Ibm 21.0.2 (including) 21.0.2 (including)
Cloud_pak_for_business_automation Ibm 21.0.3 (including) 21.0.3 (including)
Cloud_pak_for_business_automation Ibm 22.0.1 (including) 22.0.1 (including)
Cloud_pak_for_business_automation Ibm 22.0.2 (including) 22.0.2 (including)
Cloud_pak_for_business_automation Ibm 23.0.1 (including) 23.0.1 (including)
Cloud_pak_for_business_automation Ibm 23.0.2 (including) 23.0.2 (including)

References