VDB
CVE-2023-0833
CVE-2023-0833
PUBLISHED
Es existiert eine Schwachstelle in Red Hat JBoss A-MQ. Der Fehler besteht, weil eine Fehlermeldung vertrauliche Informationen in der Komponente Streams enthält. Ein lokaler Angreifer kann diese Schwachstelle ausnutzen, um vertrauliche Informationen offenzulegen.
EPSS 0.03% · 8.8th percentile
Risk Scores
EPSS Score
0.03%
8.8th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Oracle | Oracle Communications Applications <=12.0.0.8 | |
| Red Hat | Red Hat JBoss A-MQ Streams < 2.4.0 | |
| AWS | mq | |
| Red Hat | Red Hat Enterprise Linux | |
| Dell | Dell ECS <3.8.1.0 | |
| Oracle | Oracle Communications Applications 8.0.0.1.0 | |
| IBM | IBM App Connect Enterprise <12.0.12.6 | |
| Cloudflare | stream | |
| Oracle | Oracle Communications Applications 7.5.1 | |
| Oracle | Oracle Communications Applications 7.3.6.4 | |
| Dell | Dell PowerEdge | |
| Oracle | Oracle Communications Applications 7.4.2 | |
| Oracle | Oracle Communications Applications 7.4.1 | |
| Oracle | Oracle Communications Applications 15.0.0.0 | |
| Oracle | Oracle Communications Applications 7.5.0 | |
| Oracle | Oracle Communications Applications <=7.4.2 | |
| Cloudflare | access |
Exploit Intelligence
- https://github.com/square/okhttp/issues/6738 (nist-nvd)
- suppression.xml (github-poc)
- suppression.xml (github-poc)
- suppression.xml (github-poc)
- suppression.xml (github-poc)
- suppression.xml (github-poc)
- suppression.xml (github-poc)
- suppression.xml (github-poc)
Timeline
- Mar 14, 2023 CVE Published
- Sep 28, 2023 EPSS Score
- Oct 30, 2023 EPSS Score
- Dec 1, 2023 EPSS Score
- Jan 2, 2024 EPSS Score
- Feb 3, 2024 EPSS Score
- Mar 5, 2024 EPSS Score
- Apr 6, 2024 EPSS Score
- May 8, 2024 EPSS Score
- Jun 9, 2024 EPSS Score
- Jul 11, 2024 EPSS Score
- Aug 12, 2024 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-0870.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0870 advisory
- https://www.oracle.com/security-alerts/cpuapr2024.html#AppendixCAGBU advisory
- https://access.redhat.com/errata/RHSA-2024:1797 advisory
- https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-3090.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-3090 advisory
- https://www.ibm.com/support/pages/node/7172213 advisory
- https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-0794.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0794 advisory
- https://www.dell.com/support/kbdoc/000223839/dsa-2024-= advisory
- https://www.dell.com/support/kbdoc/en-us/000209268/dsa-2023-014-dell-poweredge-server-security-update-for-intel-february-2023-security-advisories-2023-1-ipu advisory
- https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-0647.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-0647 advisory
- https://access.redhat.com/errata/RHSA-2023:3223 advisory
- https://access.redhat.com/errata/RHSA-2023:1241 advisory