CVE-2023-27540

CWE-770Allocation without Limits3 documents3 sources
Severity
7.5HIGH
EPSS
0.1%
top 71.89%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
IBM Watson Cp4d Data StoresIBM Cloud PAK FOR Data
Timeline
PublishedJul 10

Description

IBM Watson CP4D Data Stores 4.6.0 does not properly allocate resources without limits or throttling which could allow a remote attacker with information specific to the system to cause a denial of service. IBM X-Force ID: 248924.

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 2.2 | Impact: 3.6

Affected Packages2 packages

NVDibm/cloud_pak4.6.0

🔴Vulnerability Details

2
CVEList
IBM Watson CP4D Data Stores denial of service2023-07-10
GHSA
GHSA-xr8j-gg22-3pqg: IBM Watson CP4D Data Stores 42023-07-10
CVE-2023-27540 (HIGH CVSS 7.5) | IBM Watson CP4D Data Stores 4.6.0 d | cvebase.io