MEDIUM🇵🇱 Wersja polska

CVE-2023-47741

CVSS 5.3v3.1pub. 2023-12-18upd. 2024-11-21

IBM i 7.3, 7.4, 7.5, IBM i Db2 Mirror for i 7.4 and 7.5 web browser clients may leave clear-text passwords in browser memory that can be viewed using common browser tools before the memory is garbage collected. A malicious actor with access to the victim's PC could exploit this vulnerability to gain access to the IBM i operating system. IBM X-Force ID: 272532.

CVSS Vector
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N
  • IBM Db2 Mirror For I

    APP
    Ibm
    7.47.5
  • IBM I

    APP
    Ibm
    7.37.47.5
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2025-36038CRITICAL9.0PL ✓ten sam produkt

RCE w IBM WebSphere Application Server przez niebezpieczną deserializację

CVE-2020-9412CRITICAL10.0ten sam produkt

The file transfer component of TIBCO Software Inc.'s TIBCO Managed File Transfer Platform Server for IBM i con...

CVE-2020-9411CRITICAL10.0ten sam produkt

The file transfer component of TIBCO Software Inc.'s TIBCO Managed File Transfer Platform Server for IBM i con...

CVE-2026-10845HIGH7.3ten sam produkt

IBM WebSphere Application Server 8.5 and 9.0 could allow a remote attacker to bypass authentication and gain u...

CVE-2026-8646HIGH7.4ten sam produkt

IBM WebSphere Application Server 9.0 and 8.5 and IBM WebSphere Application Server - Liberty 17.0.0.3 through 2...