Vulnerabilities > CVE-2023-50946 - Incorrect Authorization vulnerability in IBM Common Licensing 9.0.0

CVSS 6.5 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

NONE

Integrity impact

HIGH

Availability impact

NONE

network

low complexity

ibm

CWE-863

NVD

Published: 2025-01-26

Updated: 2025-03-11

Summary

IBM Common Licensing 9.0 could allow an authenticated user to modify a configuration file that they should not have access to due to a broken authorization mechanism.

Vulnerable Configurations

Part	Description	Count
Application	Ibm IBM Common Licensing 9.0.0	1
OS	Ibm IBM AIX -	1
OS	Linux Linux Linux Kernel -	1
OS	Microsoft Microsoft Windows -	1

Common Weakness Enumeration (CWE)

CWE-863 - Incorrect Authorization

References

https://www.ibm.com/support/pages/node/7161947