VDB
CVE-2024-22329
CVE-2024-22329
PUBLISHED
Es existiert eine Schwachstelle in IBM WebSphere Application Server. Der Fehler besteht aufgrund einer serverseitigen Request Forgery. Ein Angreifer aus dem angrenzenden Netzwerk kann diese Schwachstelle ausnutzen, um Sicherheitsmaßnahmen zu umgehen.
EPSS 0.03% · 9.4th percentile
Risk Scores
EPSS Score
0.03%
9.4th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| IBM | IBM InfoSphere Information Server 11.7 | |
| HCL | HCL AppScan Enterprise <10.7.0 | |
| HCL | HCL BigFix Compliance | |
| IBM | IBM Maximo Asset Management 7.6.8 | |
| IBM | IBM InfoSphere Identity Insight 9.0.0.1 | |
| HCL | HCL BigFix Compliance <2.0.12 | |
| IBM | IBM Storage Scale <5.2.1.0 | |
| IBM | IBM TXSeries for Multiplatforms 9.1 | |
| IBM | IBM MQ 9.3.0 | |
| IBM | IBM Rational ClearQuest | |
| HCL | HCL Commerce 9.0-9.0.1.21 | |
| IBM | IBM WebSphere Application Server Liberty <=24.0.0.3 | |
| IBM | IBM WebSphere Service Registry and Repository 8.5 | |
| IBM | IBM Maximo Asset Management 7.6.7 | |
| IBM | IBM Rational ClearCase 9.1 | |
| HCL | HCL Commerce 8.x | |
| IBM | IBM Rational ClearCase 10.0.0 | |
| IBM | IBM TXSeries for Multiplatforms 8.1 | |
| IBM | IBM Storage Scale <5.1.9.5 | |
| IBM | IBM Rational ClearCase |
…and 17 more
Exploit Intelligence
- cve-2023-22527-yara.yar (github-yara)
- cve-2023-22527-yara.yar (github-yara)
- cve-2023-22527-yara.yar (github-yara)
- cve-2023-22527-yara.yar (github-yara)
- cve-2023-22527-yara.yar (github-yara)
- cve-2023-22527-yara.yar (github-yara)
- cve-2023-22527-yara.yar (github-yara)
Timeline
- Feb 8, 2024 PoC Published
- Apr 16, 2024 CVE Published
- Apr 17, 2024 EPSS Score
- May 12, 2024 EPSS Score
- Jun 7, 2024 EPSS Score
- Jul 2, 2024 EPSS Score
- Jul 26, 2024 EPSS Score
- Aug 20, 2024 EPSS Score
- Sep 14, 2024 EPSS Score
- Oct 4, 2024 Coalition ESS Score
- Oct 9, 2024 EPSS Score
- Oct 24, 2024 Coalition ESS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-0906.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0906 advisory
- https://www.ibm.com/support/pages/node/7148380 advisory
- https://www.ibm.com/support/pages/node/7148426 advisory
- https://www.ibm.com/support/pages/node/7148501 advisory
- https://www.ibm.com/support/pages/node/7148751 advisory
- https://www.ibm.com/support/pages/node/7148974 advisory
- https://www.ibm.com/support/pages/node/7148976 advisory
- https://www.ibm.com/support/pages/node/7149055 advisory
- https://www.ibm.com/support/pages/node/7149579 advisory
- https://www.ibm.com/support/pages/node/7150669 advisory
- https://www.ibm.com/support/pages/node/7155114 advisory
- https://www.ibm.com/support/pages/node/7156268 advisory
- https://www.ibm.com/support/pages/node/7156265 advisory
- https://www.ibm.com/support/pages/node/7145534 advisory
- https://www.ibm.com/support/pages/node/7158639 advisory
- https://www.ibm.com/support/pages/node/7157976 advisory
- https://www.ibm.com/support/pages/node/7158959 advisory
- https://www.ibm.com/support/pages/node/7159010 advisory
- https://www.ibm.com/support/pages/node/7159670 advisory
…and 40 more