CVE-2023-47745 — Vulnetix

CVE-2023-47745 PUBLISHED

In IBM MQ existieren mehrere Schwachstellen. Diese bestehen in der Kernkomponente von MQ und sind auf Fehler im Bezug auf Buffer, Absicherung von Passwörtern und Open Redirects zurückzuführen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Zustand herbeizuführen oder Informationen offenzulegen.

EPSS 0.01% · 1.3th percentile

Risk Scores

EPSS Score

0.01%

1.3th percentile

Affected Products

Vendor	Product	Versions
IBM	IBM DataPower Gateway <10.5.4
IBM	IBM Business Automation Workflow
IBM	IBM DB2
IBM	IBM SAN Volume Controller
IBM	IBM Power Hardware Management Console V10
IBM	IBM MQ 9.2 LTS
IBM	IBM MQ 9.1 LTS
IBM	IBM App Connect Enterprise <=12.0.11.3
IBM	IBM Storage Scale
IBM	IBM DataPower Gateway <10.6.0.3
IBM	IBM FlashSystem
IBM	IBM App Connect Enterprise <=11.0.0.25
IBM	IBM DataPower Gateway <10.6.2
IBM	IBM App Connect Enterprise
IBM	IBM DataPower Gateway <10.0.1.18
IBM	IBM MQ 9.3 LTS
IBM	IBM Storwize
IBM	IBM DataPower Gateway <10.5.0.15
IBM	IBM DataPower Gateway <10.5.0.10
IBM	IBM MQ 9.0 LTS

…and 3 more

Timeline

Feb 29, 2024 CVE Published
Mar 3, 2024 PoC Published
Mar 3, 2024 PoC Published
Mar 4, 2024 EPSS Score
Mar 30, 2024 EPSS Score
Apr 26, 2024 EPSS Score
May 22, 2024 EPSS Score
Jun 18, 2024 EPSS Score
Jul 14, 2024 EPSS Score
Aug 9, 2024 EPSS Score
Sep 5, 2024 EPSS Score
Oct 1, 2024 EPSS Score

References

https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-0521.json advisory
https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0521 advisory
https://www.ibm.com/support/pages/node/7123135 advisory
https://www.ibm.com/support/pages/node/7123136 advisory
https://www.ibm.com/support/pages/node/7123137 advisory
https://www.ibm.com/support/pages/node/7123138 advisory
https://www.ibm.com/support/pages/node/7123139 advisory
https://www.ibm.com/support/pages/node/7126571 advisory
https://www.ibm.com/support/pages/node/7129251 advisory
https://www.ibm.com/support/pages/node/7137570 advisory
https://www.ibm.com/support/pages/node/7138007 advisory
https://www.ibm.com/support/pages/node/7145367 advisory
https://www.ibm.com/support/pages/node/7145780 advisory
https://www.ibm.com/support/pages/node/7146478 advisory
https://www.ibm.com/support/pages/node/7114770 advisory
https://www.ibm.com/support/pages/node/7150144 advisory
https://www.ibm.com/support/pages/node/7150158 advisory
https://www.ibm.com/support/pages/node/7162189 advisory
https://www.ibm.com/support/pages/node/7178670 advisory

Open in Interactive Console →