CVE-2023-25922
published 2024-02-28CVE-2023-25922: IBM Security Guardium Key Lifecycle Manager 3.0, 3.0.1, 4.0, 4.1, and 4.1.1 allows the attacker to upload or transfer files of dangerous types that can be…
high8.8CVSS 3.1
AVNACLPRLUINSUCHIHAH
IBM Security Guardium Key Lifecycle Manager 3.0, 3.0.1, 4.0, 4.1, and 4.1.1 allows the attacker to upload or transfer files of dangerous types that can be automatically processed within the product's environment. IBM X-Force ID: 247621.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ibm | security_guardium_key_lifecycle_manager | — | — |
| ibm | security_guardium_key_lifecycle_manager | >= 3.0.0 < 4.1.1.7 | 4.1.1.7 |