Ibm: >> Observability With Instana Security Vulnerabilities
IBM Observability with Instana 1.0.243 through 1.0.254 could allow an attacker on the network to execute arbitrary code on the host after a successful DNS poisoning attack. IBM X-Force ID: 259789.
CVSS Score
6.4
EPSS Score
0.001
Published
2023-10-04
Docker based datastores for IBM Instana (IBM Observability with Instana 239-0 through 239-2, 241-0 through 241-2, and 243-0) do not currently require authentication. Due to this, an attacker within the network could access the datastores with read/write access. IBM X-Force ID: 248737.
CVSS Score
9.1
EPSS Score
0.042
Published
2023-03-03