Vulnerabilities > CVE-2023-50938 - User Interface (UI) Misrepresentation of Critical Information vulnerability in IBM Powersc 1.3/2.0/2.1

CVSS 4.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

LOW

Availability impact

NONE

network

low complexity

ibm

CWE-451

NVD

Published: 2024-02-02

Updated: 2024-02-02

Summary

IBM PowerSC 1.3, 2.0, and 2.1 could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web site, a remote attacker could exploit this vulnerability to hijack the victim's click actions and possibly launch further attacks against the victim. IBM X-Force ID: 275128.

Vulnerable Configurations

Part	Description	Count
Application	Ibm IBM Powersc 2.0 IBM Powersc 2.1 IBM Powersc 1.3	3

Common Weakness Enumeration (CWE)

CWE-451 - User Interface (UI) Misrepresentation of Critical Information

References

https://www.ibm.com/support/pages/node/7113759
https://exchange.xforce.ibmcloud.com/vulnerabilities/275128