cvedb.io
CVE-2023-27290
CRITICAL · CVSS 9.1
EPSS exploitation probability: 0%
Published 2023-03-03T23:15:12.580 · Last modified 2026-06-17T05:44:43.260

Summary

Docker based datastores for IBM Instana (IBM Observability with Instana 239-0 through 239-2, 241-0 through 241-2, and 243-0) do not currently require authentication. Due to this, an attacker within the network could access the datastores with read/write access. IBM X-Force ID: 248737.

Affected products

ibm — observability_with_instana

Does this affect you?

Add your gear to cvedb and we'll alert you only when ibm ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.