Security Bulletin: IBM i is vulnerable to an attacker obtaining sensitive information due to a vulnerability in web browser clients (CVE-2023-47741).

​IBM i includes support for IBM Navigator for i and IBM Digital Certificate Manager for i which are web browser client interface implementations. The browser implementation could allow sensitive information including passwords to be left in memory which could be viewed using common tools for viewing process information on a PC (CVE-2023-47741). IBM i has addressed this issue by reducing the amount of time the sensitive data is visible in memory as described in the remediation/fixes section. Read More 

Verified by MonsterInsights