Active Session Theft Vulnerability Affects IBM Storage Scale

CVE-2023-38002

5MEDIUM

Key Information

Vendor: IBM
Status: Storage Scale
Vendor: Published:; 30 April 2024

Summary

IBM Storage Scale 5.1.0.0 through 5.1.9.2 could allow an authenticated user to steal or manipulate an active session to gain access to the system. IBM X-Force ID: 260208.

Affected Version(s)

Storage Scale <= 5.1.9.2

CVSS V3.1

Score:

Severity:

MEDIUM

Confidentiality:

LOW

Integrity:

LOW

Availability:

LOW

Attack Complexity:

HIGH

Privileges Required:

LOW

User Interaction:

NONE

Scope:

UNCHANGED

Timeline

Vulnerability published.
Apr 30, 2024
Vulnerability Reserved.
Jul 11, 2023

Collectors

NVD DatabaseMitre Database