CVE-2023-46158

Description

IBM WebSphere Application Server Liberty 23.0.0.9 through 23.0.0.10 could provide weaker than expected security due to improper resource expiration handling. IBM X-Force ID: 268775.

CVSS breakdown

CVSS 3.1

Attack Vector

Local

Attack Complexity

High

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

Low

Integrity

Low

Availability

Low

Affected products

ibm / websphere_application_server___liberty23.0.0.9, 23.0.0.10 – 23.0.0.9, 23.0.0.10

References

MISChttps://www.ibm.com/support/pages/node/7058356
MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/268775