VDB
CVE-2023-33264
CVE-2023-33264
PUBLISHED
Es existiert eine Schwachstelle in Hazelcast IMDG. Der Fehler besteht, weil die Konfigurationsroutinen die Passwörter in der Mitgliederkonfiguration nicht maskieren. Ein entfernter, authentisierter Angreifer kann diese Schwachstelle ausnutzen, um vertrauliche Informationen offenzulegen.
EPSS 2.53% · 85.7th percentile
Risk Scores
EPSS Score
2.53%
85.7th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Dell | Dell ECS <3.8.1.0 | |
| Hazelcast | Hazelcast IMDG <= 5.2.3 | |
| Hazelcast | Hazelcast IMDG <= 5.0.4 | |
| Dell | Dell PowerEdge | |
| Hazelcast | Hazelcast IMDG <= 5.1.6 |
Exploit Intelligence
Timeline
- May 21, 2023 CVE Published
- May 22, 2023 EPSS Score
- Jun 27, 2023 EPSS Score
- Sep 8, 2023 EPSS Score
- Oct 14, 2023 EPSS Score
- Dec 26, 2023 EPSS Score
- Jan 31, 2024 EPSS Score
- Mar 8, 2024 EPSS Score
- May 19, 2024 EPSS Score
- Jun 25, 2024 EPSS Score
- Jul 31, 2024 EPSS Score
- Oct 12, 2024 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-1257.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-1257 advisory
- https://nvd.nist.gov/vuln/detail/CVE-2023-33264 advisory
- https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-0794.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0794 advisory
- https://www.dell.com/support/kbdoc/000223839/dsa-2024-= advisory
- https://www.dell.com/support/kbdoc/en-us/000209268/dsa-2023-014-dell-poweredge-server-security-update-for-intel-february-2023-security-advisories-2023-1-ipu advisory