VDB
CVE-2023-25399
CVE-2023-25399
PUBLISHED
CVSS 8.699999809265137 HIGH
In IBM Business Automation Workflow existieren mehrere Schwachstellen. Diese bestehen in verschiedenen Komponenten von Drittanbietern. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Zustand herbeizuführen, Informationen offenzulegen oder Sicherheitsvorkehrungen zu umgehen.
EPSS 0.22% · 44.9th percentile
Risk Scores
CVSS 4.0
8.699999809265137
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
EPSS Score
0.22%
44.9th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| IBM | IBM Business Automation Workflow V23.0.2 |
Exploit Intelligence
- https://github.com/scipy/scipy/issues/16235 (nist-nvd)
- CIRCL seen: CVE-2023-25399 (circl-sighting)
- CIRCL seen: CVE-2023-25399 (circl-sighting)
- https://github.com/scipy/scipy/pull/16397 (circl)
- http://www.square16.org/achievement/cve-2023-25399/ (circl)
- https://github.com/scipy/scipy/issues/16235#issuecomment-1625361328 (circl)
Timeline
- CVE Published
- Jun 14, 2022 Fix PR Merged
- Jul 6, 2023 EPSS Score
- Aug 10, 2023 EPSS Score
- Sep 14, 2023 EPSS Score
- Oct 18, 2023 EPSS Score
- Nov 22, 2023 EPSS Score
- Dec 27, 2023 EPSS Score
- Jan 31, 2024 EPSS Score
- Mar 5, 2024 EPSS Score
- Apr 9, 2024 EPSS Score
- May 14, 2024 EPSS Score