CVE-2023-26115 — Vulnetix

Try Vulnetix Request Demo

CVE-2023-26115 PUBLISHED CVSS 8.699999809265137 HIGH

Es bestehen mehrere Schwachstellen in IBM QRadar SIEM. Dieser Fehler besteht in den Komponenten des Node.js-Pakets semver und des Moduls word-wrap aufgrund eines Denial-of-Service-Fehlers durch reguläre Ausdrücke. Durch die Bereitstellung speziell gestalteter Regex-Eingaben kann ein entfernter Angreifer diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand zu verursachen.

EPSS 0.03% · 7.9th percentile

Risk Scores

CVSS v4.0

8.699999809265137

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

EPSS Score

0.03%

7.9th percentile

Affected Products

Vendor	Product	Versions
Oracle	Oracle Linux
Red Hat	Red Hat OpenShift Logging Subsystem <5.7.3
Red Hat	Red Hat OpenShift Container Platform <4.14.0
Red Hat	Red Hat Enterprise Linux
Fedora	Fedora Linux
Red Hat	Red Hat OpenShift Data Foundation <4.14.13

Timeline

Jun 22, 2023 CVE Published
Jun 22, 2023 EPSS Score
Aug 30, 2023 EPSS Score
Oct 4, 2023 EPSS Score
Dec 12, 2023 EPSS Score
Jan 16, 2024 EPSS Score
Mar 26, 2024 EPSS Score
Apr 29, 2024 EPSS Score
Jul 8, 2024 EPSS Score
Aug 11, 2024 EPSS Score
Oct 20, 2024 EPSS Score
Nov 23, 2024 EPSS Score

References

https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-1738.json advisory
https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-1738 advisory
https://access.redhat.com/errata/RHSA-2023:3998 advisory
https://access.redhat.com/errata/RHSA-2023:5379 advisory
https://access.redhat.com/errata/RHSA-2023:5376 advisory
https://access.redhat.com/errata/RHSA-2023:5421 advisory
https://access.redhat.com/errata/RHSA-2023:5447 advisory
https://access.redhat.com/errata/RHSA-2023:5442 advisory
https://access.redhat.com/errata/RHSA-2023:5488 advisory
https://access.redhat.com/errata/RHSA-2023:5484 advisory
https://access.redhat.com/errata/RHSA-2023:5486 advisory
https://access.redhat.com/errata/RHSA-2023:5485 advisory
https://access.redhat.com/errata/RHSA-2023:7222 advisory
https://access.redhat.com/errata/RHSA-2023:7681 advisory
https://access.redhat.com/errata/RHSA-2023:5006 advisory
https://bodhi.fedoraproject.org/updates/FEDORA-2024-5ecc250449 advisory
https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2024-78df19aaf3 advisory
https://access.redhat.com/errata/RHSA-2024:8676 advisory
https://access.redhat.com/errata/RHSA-2025:0164 advisory
https://access.redhat.com/errata/RHSA-2025:0323 advisory

…and 5 more

Open in Interactive Console →