IBM PowerSC information Disclosure
CVE-2023-50326
7.5HIGH
Summary
IBM PowerSC versions 1.3, 2.0, and 2.1 exhibit vulnerability stemming from inadequate account lockout settings. This security flaw could be exploited by remote attackers to execute brute force attacks on user credentials, potentially compromising system security. The vulnerability emphasizes the importance of implementing robust account protection mechanisms to safeguard sensitive information.
Affected Version(s)
PowerSC 1.3, 2.0, 2.1
References
CVSS V3.1
Score:
7.5
Severity:
HIGH
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published