CVE-2023-27290

Description

Docker based datastores for IBM Instana (IBM Observability with Instana 239-0 through 239-2, 241-0 through 241-2, and 243-0) do not currently require authentication. Due to this, an attacker within the network could access the datastores with read/write access. IBM X-Force ID: 248737.

Related CPE's

aibmobservability_with_instana243-0*******

aibmobservability_with_instana********

aibmobservability_with_instana********

References

https://www.ibm.com/support/pages/node/6959969

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/248737

VDB EntryVendor Advisory

CvssV3 impact

Could not find any metrics

CvssV2 impact

Could not find any metrics
Created by Yello
About Severity.io