ID
VAR-202402-1982
CVE
CVE-2023-32330
TITLE
IBM of Security Verify Access Certificate validation vulnerabilities in
Trust: 0.8
sources:
JVNDB: JVNDB-2023-025923
DESCRIPTION
IBM Security Verify Access 10.0.0.0 through 10.0.6.1 uses insecure calls that could allow an attacker on the network to take control of the server. IBM X-Force ID: 254977. (DoS) It may be in a state
Trust: 1.62
sources:
NVD: CVE-2023-32330 //
JVNDB: JVNDB-2023-025923
AFFECTED PRODUCTS
| vendor: | ibm | model: | security verify access | scope: | lte | version: | 10.0.6.1 | Trust: 1.0 |
| vendor: | ibm | model: | security verify access | scope: | gte | version: | 10.0.0.0 | Trust: 1.0 |
| vendor: | ibm | model: | security verify access | scope: | eq | version: | - | Trust: 0.8 |
| vendor: | ibm | model: | security verify access | scope: | eq | version: | 10.0.0.0 to 10.0.6.1 | Trust: 0.8 |
sources:
JVNDB: JVNDB-2023-025923 //
NVD: CVE-2023-32330
CVSS
SEVERITY | CVSSV2 | CVSSV3 | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|
sources:
JVNDB: JVNDB-2023-025923 //
NVD: CVE-2023-32330 //
NVD: CVE-2023-32330
PROBLEMTYPE DATA
| problemtype: | CWE-295 | Trust: 1.0 |
| problemtype: | Illegal certificate verification (CWE-295) [NVD evaluation ] | Trust: 0.8 |
sources:
JVNDB: JVNDB-2023-025923 //
NVD: CVE-2023-32330
CONFIGURATIONS
sources:
NVD: CVE-2023-32330
PATCH
| title: | 7106586 IBM X-Force Exchange | url: | https://www.ibm.com/support/pages/node/7106586 | Trust: 0.8 |
sources:
JVNDB: JVNDB-2023-025923
EXTERNAL IDS
| db: | NVD | id: | CVE-2023-32330 | Trust: 2.6 |
| db: | JVNDB | id: | JVNDB-2023-025923 | Trust: 0.8 |
sources:
JVNDB: JVNDB-2023-025923 //
NVD: CVE-2023-32330
REFERENCES
| url: | https://exchange.xforce.ibmcloud.com/vulnerabilities/254977 | Trust: 1.0 |
| url: | https://www.ibm.com/support/pages/node/7106586 | Trust: 1.0 |
| url: | https://nvd.nist.gov/vuln/detail/cve-2023-32330 | Trust: 0.8 |
sources:
JVNDB: JVNDB-2023-025923 //
NVD: CVE-2023-32330
SOURCES
| db: | JVNDB | id: | JVNDB-2023-025923 |
| db: | NVD | id: | CVE-2023-32330 |
LAST UPDATE DATE
2024-02-20T23:28:21.145000+00:00
SOURCES UPDATE DATE
| db: | JVNDB | id: | JVNDB-2023-025923 | date: | 2024-02-14T02:56:00 |
| db: | NVD | id: | CVE-2023-32330 | date: | 2024-02-10T04:01:19.780 |
SOURCES RELEASE DATE
| db: | JVNDB | id: | JVNDB-2023-025923 | date: | 2024-02-14T00:00:00 |
| db: | NVD | id: | CVE-2023-32330 | date: | 2024-02-07T17:15:08.847 |