CVE-2023-31002

MEDIUM

IBM Security Access Manager Container <10.0.6.1 - Info Disclosure

Title source: llm
STIX 2.1

Description

IBM Security Access Manager Container 10.0.0.0 through 10.0.6.1 temporarily stores sensitive information in files that could be accessed by a local user. IBM X-Force ID: 254657.

References (3)

Scores

CVSS v3 5.1
EPSS 0.0001
EPSS Percentile 2.2%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact partial

Details

CWE
CWE-312 CWE-256
Status published
Products (1)
ibm/security_access_manager_container 10.0.0.0 - 10.0.6.1
Published Feb 07, 2024
Tracked Since Feb 18, 2026