VDB

CVE-2023-34462

CVE-2023-34462 PUBLISHED CVSS 8.699999809265137 HIGH

In IBM Maximo Asset Management existieren mehrere Schwachstellen. Diese bestehen in den Komponenten "Netty", "Logback" und "Java on z/OS". Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Informationen offenzulegen, einen Denial of Service Zustand herbeizuführen oder einen Cross-Site-Scripting-Angriff durchzuführen.

EPSS 0.74% · 73.2th percentile

Risk Scores

CVSS 4.0
8.699999809265137
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
EPSS Score
0.74%
73.2th percentile

Affected Products

VendorProductVersions
DellDell ECS <3.8.1.0
NetAppNetApp ActiveIQ Unified Manager
OracleOracle Utilities Applications 4.4.0.2.0
OracleOracle Communications Applications <= 6.0.3
OracleOracle Utilities Applications 4.5.0.1.3
OracleOracle Communications 7.2.0.0.0
OracleOracle Financial Services Applications <= 11.8
OracleOracle Communications Applications 6.3.1.0.0
Red HatRed Hat Integration Service Registry 1
OracleOracle Utilities Applications 2.5.0.2
OracleOracle Financial Services Applications 21.1
OracleOracle Communications 9.0.0.0
OracleOracle Communications <= 23.2.4
OracleOracle Communications 8.6.0.0
OracleOracle Financial Services Applications 19.1
OracleOracle Financial Services Applications <= 14.3
Red HatRed Hat Integration Camel Extensions for Quarkus 1
OracleOracle Financial Services Applications 11.10
OracleOracle Communications 23.1.0.0
OracleOracle Communications <= 9.2

…and 72 more

Timeline

  • Jun 20, 2023 CVE Published
  • Jun 23, 2023 EPSS Score
  • Jul 28, 2023 EPSS Score
  • Sep 1, 2023 EPSS Score
  • Nov 11, 2023 EPSS Score
  • Dec 16, 2023 EPSS Score
  • Jan 20, 2024 EPSS Score
  • Feb 8, 2024 PoC Published
  • Feb 25, 2024 EPSS Score
  • Mar 31, 2024 EPSS Score
  • Jun 9, 2024 EPSS Score
  • Jul 15, 2024 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›