CVE-2023-50945
26.01.2025, 16:15
IBM Common Licensing 9.0 stores user credentials in plain clear text which can be read by a local user.Enginsight
| Vendor | Product | Version |
|---|---|---|
| ibm | common_licensing | 9.0.0 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration
- CWE-256 - Plaintext Storage of a PasswordStoring a password in plaintext may result in a system compromise.
- CWE-522 - Insufficiently Protected CredentialsThe product transmits or stores authentication credentials, but it uses an insecure method that is susceptible to unauthorized interception and/or retrieval.