VDB
CVE-2021-28167
CVE-2021-28167
PUBLISHED
Es existiert eine Schwachstelle in IBM Java SDK. Diese ist auf einen Fehler in der API "jdk.internal.reflect.ConstantPool" zurückzuführen. Ein entfernter, anonymer Angreifer kann diese Schwachstelle ausnutzen, um Sicherheitsvorkehrungen zu umgehen.
EPSS 0.19% · 40.2th percentile
Risk Scores
EPSS Score
0.19%
40.2th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| IBM | IBM SPSS 8.3 | |
| IBM | IBM SPSS 8.2.1 | |
| IBM | IBM SPSS 8.2.2 | |
| IBM | IBM Java SDK 8.0.6.31 | |
| IBM | IBM SPSS 8.2 | |
| IBM | IBM VIOS 3.1 | |
| IBM | IBM Rational Business Developer | |
| IBM | IBM AIX 7.3 | |
| IBM | IBM Security Verify Access 10.0.4.0 | |
| IBM | IBM Security Verify Access 10.0.3.0 | |
| IBM | IBM AIX 7.2 | |
| IBM | IBM AIX 7.1 |
Exploit Intelligence
Timeline
- Apr 21, 2021 CVE Published
- Apr 27, 2021 EPSS Score
- Jun 30, 2021 EPSS Score
- Sep 1, 2021 EPSS Score
- Jan 3, 2022 EPSS Score
- Jan 6, 2022 EPSS Score
- Feb 4, 2022 EPSS Score
- Mar 6, 2022 EPSS Score
- Apr 1, 2022 EPSS Score
- Jul 9, 2022 EPSS Score
- Sep 10, 2022 EPSS Score
- Nov 11, 2022 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2022/wid-sec-w-2022-1886.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-1886 advisory
- https://www.ibm.com/support/pages/node/6953615 advisory
- https://www.ibm.com/support/pages/node/6855731 advisory
- https://aix.software.ibm.com/aix/efixes/security/java_dec2022_advisory.asc advisory
- https://www.ibm.com/support/pages/node/6845554 advisory
- https://www.ibm.com/support/pages/node/6832432 advisory