CVE-2023-50328

Medium

IBM PowerSC 1.3, 2.0, and 2.1 may allow a remote attacker to view session identifiers passed via URL query strings. IBM X-Force ID:…

ibm·CWE-598·Published 2024-02-02

CVSS

5.3

EPSS

0.01

KEV

Exploits

cve.orgen

143 chars

IBM PowerSC 1.3, 2.0, and 2.1 may allow a remote attacker to view session identifiers passed via URL query strings. IBM X-Force ID: 275110.

NVDen

143 chars

IBM PowerSC 1.3, 2.0, and 2.1 may allow a remote attacker to view session identifiers passed via URL query strings. IBM X-Force ID: 275110.

NVDes

164 chars

IBM PowerSC 1.3, 2.0 y 2.1 puede permitir a un atacante remoto ver identificadores de sesión pasados a través de cadenas de consulta URL. ID de IBM X-Force: 275110.

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
3.1	Primary	NVD	5.3	3.9	1.4	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
3.1	Primary	cve.org	3.7	—	—	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N