Main Vulnerability Database SB2023032322

SB2023032322 - Unauthorized modification of data in IBM Watson CloudPak for Data Data Stores

Published: March 23, 2023

Security Bulletin ID SB2023032322

Severity

Low

Patch available

Number of vulnerabilities 1

Exploitation vector Physical access

Highest impact Data manipulation

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 security vulnerability.

1) Missing Encryption of Sensitive Data (CVE-ID: CVE-2023-26282)

The vulnerability allows an attacker to modify files on the system.

The vulnerability exists due to IBM Watson CP4D Data Stores does not protect itself against unauthorized physical impact. An attacker with physical access and specific knowledge of the system to modify files or data on the system.

Remediation

Cybersecurity Help is not aware of any official remediation provided by the vendor.

References

https://www.ibm.com/support/pages/node/6965452