← Back to CVE List

CVE-2023-38367

Published: 2024-02-29T02:15Z
Last Modified: 2025-03-27T15:15Z
Source: MITRE CVE List
License: MITRE-CVE-TOS
IBM Cloud Pak Foundational Services Identity Provider (idP) API (IBM Cloud Pak for Automation 18.0.0, 18.0.1, 18.0.2, 19.0.1, 19.0.2, 19.0.3, 20.0.1, 20.0.2, 20.0.3, 21.0.1, 21.0.2, 21.0.3, 22.0.1, and 22.0.2) allows CRUD Operations with an invalid token. This could allow an unauthenticated attacker to view, update, delete or create an IdP configuration. IBM X-Force ID: 261130. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt