Vulnerability Details CVE-2023-50959
IBM Cloud Pak for Business Automation 18.0.0, 18.0.1, 18.0.2,19.0.1, 19.0.2, 19.0.3,20.0.1, 20.0.2, 20.0.3, 21.0.1, 21.0.2, 21.0.3, 22.0.1,2 2.0.2, 23.0.1, and 23.0.2 may allow end users to query more documents than expected from a connected Enterprise Content Management system when configured to use a system account. IBM X-Force ID: 275938.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 6.9%
CVSS Severity
CVSS v3 Score 5.3
References
Products affected by CVE-2023-50959
-
cpe:2.3:a:ibm:cloud_pak_for_business_automation:18.0.0
-
cpe:2.3:a:ibm:cloud_pak_for_business_automation:18.0.1
-
cpe:2.3:a:ibm:cloud_pak_for_business_automation:18.0.2
-
cpe:2.3:a:ibm:cloud_pak_for_business_automation:19.0.1
-
cpe:2.3:a:ibm:cloud_pak_for_business_automation:19.0.2
-
cpe:2.3:a:ibm:cloud_pak_for_business_automation:19.0.3
-
cpe:2.3:a:ibm:cloud_pak_for_business_automation:20.0.1
-
cpe:2.3:a:ibm:cloud_pak_for_business_automation:20.0.2
-
cpe:2.3:a:ibm:cloud_pak_for_business_automation:20.0.3
-
cpe:2.3:a:ibm:cloud_pak_for_business_automation:21.0.1
-
cpe:2.3:a:ibm:cloud_pak_for_business_automation:21.0.2
-
cpe:2.3:a:ibm:cloud_pak_for_business_automation:21.0.3
-
cpe:2.3:a:ibm:cloud_pak_for_business_automation:22.0.1
-
cpe:2.3:a:ibm:cloud_pak_for_business_automation:22.0.2
-
cpe:2.3:a:ibm:cloud_pak_for_business_automation:23.0.1
-
cpe:2.3:a:ibm:cloud_pak_for_business_automation:23.0.2