CVE-2023-33842

Published: Jun 22, 2023Modified: Nov 21, 2024

5.5

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Exploitability: 1.8 / Impact: 3.6

Source: NVD

Description

IBM SPSS Modeler on Windows 17.0, 18.0, 18.2.2, 18.3, 18.4, and 18.5 requires the end user to have access to the server SSL key which could allow a local user to decrypt and obtain sensitive information. IBM X-Force ID: 256117.

Affected (6)

Products: Ibm: Spss Modeler

Ibm

1 product

Spss Modeler

Configuration A

6 vulnerable · 2 platform

Vulnerable Software	Affected Versions
Ibm Spss Modeler	Version 17.0
Ibm Spss Modeler	Version 18.0
Ibm Spss Modeler	Version 18.2.2
Ibm Spss Modeler	Version 18.3
Ibm Spss Modeler	Version 18.4
Ibm Spss Modeler	Version 18.5

Running on/with	Platform Versions
Apple Macos	All versions
Microsoft Windows	All versions

References (4)

https://exchange.xforce.ibmcloud.com/vulnerabilities/256117

Source: psirt@us.ibm.com

VDB EntryVendor Advisory

https://https://www.ibm.com/support/pages/node/7004299

Source: psirt@us.ibm.com

Broken LinkPatchVendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/256117

Source: af854a3a-2127-422b-91ae-364da2661108

VDB EntryVendor Advisory

https://https://www.ibm.com/support/pages/node/7004299

Source: af854a3a-2127-422b-91ae-364da2661108

Broken LinkPatchVendor Advisory

Timeline

No history available yet.