Plain Text Credential Storage Vulnerability in IBM Common Licensing
CVE-2023-50945
5.5MEDIUM
Summary
IBM Common Licensing 9.0 contains a vulnerability that allows local users to access sensitive information, specifically user credentials, stored in plain text. This exposure can lead to unauthorized access and compromise of user accounts, emphasizing the importance of implementing secure credential storage practices. Users should take proactive measures to mitigate risks associated with this vulnerability by addressing configuration issues and enhancing data protection strategies.
Affected Version(s)
Common Licensing 9.0
References
CVSS V3.1
Score:
5.5
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved