CVE-2023-27557
Last modified
CVE-2023-27557 is a high-severity vulnerability rated 7.5/10 on the CVSS scale. IBM Counter Fraud Management for Safer Payments 6.1.0.00 through 6.1.1.02, 6.2.0.00 through 6.2.2.02, 6.3.0.00 through 6.3.1.02, 6.4.0.00 through 6.4.2.01, and 6.5.0.00 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 249192.. EPSS estimates a 0.37% chance of exploitation in the next 30 days.
Description
IBM Counter Fraud Management for Safer Payments 6.1.0.00 through 6.1.1.02, 6.2.0.00 through 6.2.2.02, 6.3.0.00 through 6.3.1.02, 6.4.0.00 through 6.4.2.01, and 6.5.0.00 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 249192.
Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Ibm | Safer Payments | >= 6.1.0.00, < 6.1.1.03 |
| Ibm | Safer Payments | >= 6.2.0.00, < 6.2.2.03 |
| Ibm | Safer Payments | >= 6.3.0.00, < 6.3.1.03 |
| Ibm | Safer Payments | >= 6.4.0.00, < 6.4.2.02 |
| Ibm | Safer Payments | 6.5.0.00 |
References
- https://exchange.xforce.ibmcloud.com/vulnerabilities/249192VDB Entry, Vendor Advisory
- https://www.ibm.com/support/pages/node/6985603Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/249192VDB Entry, Vendor Advisory
- https://www.ibm.com/support/pages/node/6985603Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2023-27557?
How severe is CVE-2023-27557?
How do I fix CVE-2023-27557?
Are you affected by CVE-2023-27557?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST