Description
IBM Cloud Pak System 2.3.0 through 2.3.3.3 Interim Fix 1 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 197498.
CVSS breakdown
CVSS 3.0
Attack Vector
Network
Integrity
None
User Interaction
None
Privileges Required
None
Attack Complexity
High
Scope
Unchanged
Availability
None
Confidentiality
High
E
Unchanged
RC
Changed
RL
O
Affected products
- ibm / cloud_pak_system2.3.0 – 2.3.0
- ibm / cloud_pak_system2.3.3.3.Interim.Fix1 – 2.3.3.3.Interim.Fix1