CVE-2023-51775 — Vulnetix

CVE-2023-51775 PUBLISHED CVSS 8.699999809265137 HIGH

Es besteht eine Schwachstelle in IBM SPSS. Dieser Fehler betrifft die Komponente jose4j aufgrund einer unsachgemäßen Eingabevalidierung. Durch Senden eines speziell gestalteten p2c-Wertes kann ein entfernter, anonymer Angreifer diese Schwachstelle ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen.

EPSS 0.38% · 59.9th percentile

Risk Scores

CVSS v4.0

8.699999809265137

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

EPSS Score

0.38%

59.9th percentile

Affected Products

Vendor	Product	Versions
Xerox	Xerox FreeFlow Print Server v9
Red Hat	Red Hat Enterprise Linux AMQ Streams 2
Oracle	Oracle Communications 9.1.1.9.0
IBM	IBM TXSeries for Multiplatforms 8.1
HCL	HCL Commerce 9.0-9.0.1.21
Oracle	Oracle Communications 23.3.0
Oracle	Oracle Fusion Middleware 14.1.1.0.0
IBM	IBM Maximo Asset Management 7.6.1.2
Oracle	Oracle Communications 23.3.1
Red Hat	Red Hat Enterprise Linux
Oracle	Oracle Fusion Middleware 14.1.2.0.0
Oracle	Oracle Communications 14.0.0.0.0
Oracle	Oracle Communications 9.2.0
Oracle	Oracle Communications 46.6.4
Oracle	Oracle Communications 9.1.1.7.0
Oracle	Oracle Communications <=23.4.2
IBM	IBM Tivoli Monitoring 6.3.0.7
IBM	IBM WebSphere Application Server <9.0.5.20
Oracle	Oracle Communications 17.0.1
Oracle	Oracle Communications 23.4.4

…and 80 more

Timeline

Dec 25, 2023 CVE Published
Dec 26, 2023 EPSS Score
Jan 24, 2024 EPSS Score
Feb 8, 2024 PoC Published
Feb 22, 2024 EPSS Score
Mar 21, 2024 EPSS Score
Apr 19, 2024 EPSS Score
May 18, 2024 EPSS Score
Jun 16, 2024 EPSS Score
Jul 14, 2024 EPSS Score
Sep 10, 2024 EPSS Score
Oct 5, 2024 Coalition ESS Score

References

https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-0797.json advisory
https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0797 advisory
https://www.ibm.com/support/pages/node/7145942 advisory
https://www.ibm.com/support/pages/node/7147914 advisory
https://www.ibm.com/support/pages/node/7148335 advisory
https://www.ibm.com/support/pages/node/7148747 advisory
https://www.ibm.com/support/pages/node/7149055 advisory
https://www.ibm.com/support/pages/node/7149578 advisory
https://www.ibm.com/support/pages/node/7150669 advisory
https://www.ibm.com/support/pages/node/7155114 advisory
https://www.ibm.com/support/pages/node/7156370 advisory
https://www.ibm.com/support/pages/node/7157976 advisory
https://www.ibm.com/support/pages/node/7158959 advisory
https://www.ibm.com/support/pages/node/7159010 advisory
https://www.ibm.com/support/pages/node/7159714 advisory
https://www.ibm.com/support/pages/node/7160132 advisory
https://www.ibm.com/support/pages/node/7164812 advisory
https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0115052 advisory
https://support.hcl-software.com/community?id=community_blog&sys_id=c054a21093b5d2500dddf87d1dba102d advisory
https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-0869.json advisory

…and 65 more

Open in Interactive Console →