Sensitive Information Disclosure Vulnerability in IBM Cloud Pak System
CVE-2023-38272

7.5HIGH

Key Information:

Vendor: IBM
Status: Cloud Pak System
Vendor: CVE Published:; 27 March 2025

What is CVE-2023-38272?

A vulnerability in IBM Cloud Pak System allows a user with network access to exploit the system by obtaining sensitive information from Command Line Interface (CLI) arguments. This issue may lead to unauthorized access to confidential data, potentially impacting the security posture of affected systems. Users are encouraged to review their security configurations and implement the necessary updates to safeguard against such exposures.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Cloud Pak System 2.3.3.0

Cloud Pak System 2.3.3.3

Cloud Pak System 2.3.3.3 iFix1

References

https://www.ibm.com/support/pages/node/7229212

vendor-advisorypatch

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 27, 2025
Vulnerability Reserved
Jul 14, 2023

JSON

IBM

What is CVE-2023-38272?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

Affected Version(s)

References

CVSS V3.1

Timeline

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.