CVE-2023-26281 — Vulnetix

Try Vulnetix Request Demo

CVE-2023-26281 PUBLISHED

Es existiert eine Schwachstelle in IBM HTTP Server. Ein entfernter, anonymer Angreifer kann diese Schwachstelle ausnutzen, indem er eine speziell gestaltete URL verwendet, um einen Denial-of-Service-Zustand auszulösen.

EPSS 0.07% · 21.5th percentile

Risk Scores

EPSS Score

0.07%

21.5th percentile

Affected Products

Vendor	Product	Versions
IBM	IBM Security Access Manager for Enterprise Single Sign-On 8.2.1
IBM	IBM Security Access Manager for Enterprise Single Sign-On 8.2.2
IBM	IBM Rational ClearCase 9.0.2
IBM	IBM Rational ClearCase 9.1
IBM	IBM Business Automation Workflow
IBM	IBM Business Process Manager 8.6.0.0
IBM	IBM Tivoli Monitoring < 6.3.0.7 sp5
IBM	IBM Tivoli Network Manager 4.2.0
IBM	IBM Rational ClearCase 10.0.0

Timeline

Feb 8, 2023 CVE Published
Feb 8, 2023 PoC Published
Feb 10, 2023 PoC Published
Mar 1, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Apr 9, 2023 EPSS Score
May 17, 2023 EPSS Score
Jun 9, 2023 PoC Published
Jun 25, 2023 EPSS Score
Aug 2, 2023 EPSS Score
Sep 10, 2023 EPSS Score
Oct 19, 2023 EPSS Score

References

https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-0488.json advisory
https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-0488 advisory
https://www.ibm.com/support/pages/node/6985851 advisory
https://www.ibm.com/support/pages/node/6967237 advisory
https://www.ibm.com/support/pages/node/6966600 advisory
https://www.ibm.com/support/pages/node/6963268 advisory
https://www.ibm.com/support/pages/node/6958697 advisory
https://www.ibm.com/support/pages/node/6958522 advisory

Open in Interactive Console →