CVE-2023-45857 — Vulnetix

Try Vulnetix Request Demo

CVE-2023-45857 PUBLISHED CVSS 8.699999809265137 HIGH

In HCL BigFix existieren mehrere Schwachstellen in mehreren Third Party Komponenten. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und die Integrität zu gefährden.

EPSS 0.13% · 32.7th percentile

Risk Scores

CVSS v4.0

8.699999809265137

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

EPSS Score

0.13%

32.7th percentile

Affected Products

Vendor	Product	Versions
HCL	HCL BigFix Server Automation
Red Hat	Red Hat OpenShift for Windows Containers <10.15.3
Red Hat	Red Hat OpenShift Secondary Scheduler Operator
Red Hat	Red Hat OpenShift Container Platform <4.12.72
Red Hat	Red Hat OpenShift Container Platform <4.16.8
Red Hat	Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat	Red Hat OpenShift Data Foundation <4.14.13
IBM	IBM App Connect Enterprise 11.0.0.1 - 11.0.0.23
Red Hat	Red Hat OpenShift GitOps <1.15.2
Atlassian	Atlassian Bitbucket <9.4.13 (LTS)
Amazon	Amazon Linux 2
Red Hat	Red Hat Enterprise Linux 9
Atlassian	Atlassian Bitbucket <8.19.25 (LTS)
Red Hat	Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat	Red Hat OpenShift CodeReady Workspaces
HCL	HCL BigFix
Atlassian	Atlassian Bitbucket <10.0.2
Red Hat	Red Hat OpenShift
Red Hat	Red Hat OpenShift GitOps 1.12
Red Hat	Red Hat OpenShift Kube Descheduler Operator 5

…and 9 more

Timeline

Nov 8, 2023 CVE Published
Nov 9, 2023 EPSS Score
Dec 9, 2023 EPSS Score
Jan 8, 2024 EPSS Score
Feb 8, 2024 PoC Published
Mar 7, 2024 EPSS Score
Apr 6, 2024 EPSS Score
May 6, 2024 EPSS Score
Jun 5, 2024 EPSS Score
Jul 5, 2024 EPSS Score
Sep 3, 2024 EPSS Score
Sep 4, 2024 CVE Updated

References

https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-0277.json advisory
https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0277 advisory
https://www.ibm.com/support/pages/node/7114422 advisory
https://www.ibm.com/support/pages/node/7114423 advisory
https://www.ibm.com/support/pages/node/7114425 advisory
https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-0588.json advisory
https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0588 advisory
https://www.ibm.com/support/pages/node/7130998 advisory
https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-1226.json advisory
https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-1226 advisory
https://access.redhat.com/errata/RHSA-2024:2874 advisory
https://access.redhat.com/errata/RHSA-2024:2929 advisory
https://access.redhat.com/errata/RHSA-2024:2930 advisory
https://access.redhat.com/errata/RHSA-2024:2932 advisory
https://access.redhat.com/errata/RHSA-2024:2933 advisory
https://access.redhat.com/errata/RHSA-2024:3316 advisory
https://access.redhat.com/errata/RHSA-2024:2901 advisory
https://access.redhat.com/errata/RHSA-2024:3473 advisory
https://access.redhat.com/errata/RHSA-2024:3790 advisory
https://access.redhat.com/errata/RHSA-2024:3715 advisory

…and 41 more

Open in Interactive Console →