CVE-2023-5236 — Vulnetix

Try Vulnetix Request Demo

CVE-2023-5236 PUBLISHED CVSS 8.699999809265137 HIGH

Es bestehen mehrere Schwachstellen in IBM Operational Decision Manager. Diese Fehler existieren in der Infinispan-Komponente wegen mehrerer zirkulärer Objektreferenzen und einer unsachgemäßen Behandlung vertraulicher Informationen. Ein entfernter authentifizierter Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service zu erzeugen oder vertrauliche Informationen offenzulegen.

EPSS 0.10% · 27.8th percentile

Risk Scores

CVSS v4.0

8.699999809265137

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

EPSS Score

0.10%

27.8th percentile

Affected Products

Vendor	Product	Versions
Red Hat	Red Hat Enterprise Linux
Red Hat	Red Hat JBoss A-MQ Clients 3
Red Hat	Red Hat Integration Camel Extensions for Quarkus 1
IBM	IBM Operational Decision Manager <8.12.0.1
Red Hat	Red Hat Integration Service Registry 1
IBM	IBM Operational Decision Manager <9.0.0.0
Red Hat	Red Hat JBoss Enterprise Application Platform <8.0.1
Red Hat	Red Hat Integration Camel K 1
IBM	IBM Security Verify Access 10.0.0.0-10.0.6.1
IBM	IBM Operational Decision Manager <8.11.0.1
Hitachi	Hitachi Ops Center
NetApp	NetApp ActiveIQ Unified Manager

Timeline

Sep 28, 2023 CVE Published
Dec 19, 2023 EPSS Score
Jan 16, 2024 EPSS Score
Feb 14, 2024 EPSS Score
Mar 13, 2024 EPSS Score
May 9, 2024 EPSS Score
Jun 7, 2024 EPSS Score
Jul 5, 2024 EPSS Score
Aug 3, 2024 EPSS Score
Aug 31, 2024 EPSS Score
Sep 29, 2024 EPSS Score
Oct 5, 2024 Coalition ESS Score

References

https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-2518.json advisory
https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-2518 advisory
https://security.netapp.com/advisory/ntap-20240125-0004/ advisory
https://access.redhat.com/errata/RHSA-2024:0148 advisory
https://access.redhat.com/errata/RHSA-2024:1192 advisory
https://access.redhat.com/errata/RHSA-2024:1193 advisory
https://access.redhat.com/errata/RHSA-2024:1194 advisory
https://www.ibm.com/support/pages/node/7108821 advisory
https://access.redhat.com/errata/RHSA-2023:5396 advisory
https://github.com/FasterXML/jackson-databind/issues/3972 advisory
https://access.redhat.com/errata/RHSA-2023:5484 advisory
https://access.redhat.com/errata/RHSA-2023:5488 advisory
https://access.redhat.com/errata/RHSA-2023:5486 advisory
https://access.redhat.com/errata/RHSA-2023:5485 advisory
https://access.redhat.com/errata/RHSA-2023:5946 advisory
https://access.redhat.com/errata/RHSA-2023:7641 advisory
https://access.redhat.com/errata/RHSA-2023:7637 advisory
https://access.redhat.com/errata/RHSA-2023:7638 advisory
https://access.redhat.com/errata/RHSA-2023:7639 advisory
https://access.redhat.com/errata/RHSA-2023:7653 advisory

…and 6 more

Open in Interactive Console →