Data Modification Vulnerability in Watson CP4D Data Stores
CVE-2023-26282

4.2MEDIUM

Key Information:

Vendor: IBM
Status: Watson Cp4d Data Stores
Vendor: CVE Published:; 5 March 2024

Summary

IBM Watson CP4D Data Stores versions 4.6.0 through 4.6.3 are susceptible to a vulnerability that allows users with physical access and specific knowledge of the system to alter files or data. This could lead to unauthorized changes that compromise the integrity of the system and potentially expose sensitive information. System administrators are advised to assess their environments and apply best practices to mitigate risks associated with this vulnerability.

Affected Version(s)

Watson CP4D Data Stores 4.6.0 <= 4.6.3

References

https://https://www.ibm.com/support/pages/node/6965452

vendor-advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/248415

vdb-entry

CVSS V3.1

Score:

4.2

Severity:

MEDIUM

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Physical

Attack Complexity:

High

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Mar 5, 2024
Vulnerability Reserved
Feb 21, 2023