VDB
CVE-2023-34054
CVE-2023-34054
PUBLISHED
CVSS 8.699999809265137 HIGH
Es bestehen mehrere Schwachstellen in IBM Operational Decision Manager. Diese Fehler bestehen in den Komponenten des Drittanbieters VMware Tanzu Reactor Netty und Spring Boot. Durch das Senden speziell gestalteter HTTP-Anforderungen kann ein entfernter Angreifer diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand zu verursachen.
EPSS 0.17% · 37.9th percentile
Risk Scores
CVSS v4.0
8.699999809265137
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
EPSS Score
0.17%
37.9th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| IBM | IBM Security Guardium <=11.3 | |
| IBM | IBM Security Guardium <=11.5 | |
| IBM | IBM Security Guardium <=12.0 | |
| IBM | IBM Security Guardium <=11.4 |
Timeline
- Nov 28, 2023 CVE Published
- Nov 29, 2023 EPSS Score
- Dec 29, 2023 EPSS Score
- Jan 27, 2024 EPSS Score
- Feb 26, 2024 EPSS Score
- Mar 27, 2024 EPSS Score
- Apr 25, 2024 EPSS Score
- May 25, 2024 EPSS Score
- Jun 24, 2024 EPSS Score
- Jun 28, 2024 CVE Updated
- Aug 22, 2024 EPSS Score
- Sep 21, 2024 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-0241.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0241 advisory
- https://www.ibm.com/support/pages/node/7112382 advisory
- https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-1092.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-1092 advisory
- https://www.ibm.com/support/pages/node/7150840 advisory