VDB
CVE-2024-25026
CVE-2024-25026
PUBLISHED
Es besteht eine Schwachstelle in IBM WebSphere Application Server. Dieser Fehler besteht aufgrund eines Ressourcenerschöpfungsproblems bei der Bearbeitung von HTTP-Anfragen. Ein entfernter, anonymer Angreifer kann diese Schwachstelle ausnutzen, um einen Denial-of-Service-Zustand zu verursachen.
EPSS 0.02% · 6.1th percentile
Risk Scores
EPSS Score
0.02%
6.1th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| IBM | IBM Storage Scale <5.2.1.0 | |
| IBM | IBM InfoSphere Identity Insight 9.0.0.1 | |
| IBM | IBM Rational ClearQuest | |
| IBM | IBM WebSphere Application Server <8.5.5.26 | |
| HCL | HCL Commerce 9.1.0-9.1.15 | |
| IBM | IBM Tivoli Monitoring 6.3.0.7 | |
| IBM | IBM Business Automation Workflow | |
| IBM | IBM Security Access Manager for Enterprise Single Sign-On 8.2.2 | |
| IBM | IBM Maximo Asset Management 7.6.1 | |
| IBM | IBM MQ 9.1.0 | |
| IBM | IBM MQ | |
| IBM | IBM InfoSphere Identity Insight 10.0.0.0 | |
| IBM | IBM Storage Scale <5.1.9.5 | |
| IBM | IBM Rational ClearCase | |
| IBM | IBM WebSphere Application Server Liberty <24.0.0.5 | |
| IBM | IBM TXSeries for multiplatforms_9.1 | |
| IBM | IBM Security Access Manager for Enterprise Single Sign-On 8.2.1 | |
| IBM | IBM WebSphere Application Server <9.0.5.20 | |
| IBM | IBM WebSphere Service Registry and Repository | |
| IBM | IBM License Metric Tool 9.2 |
…and 6 more
Timeline
- Feb 8, 2024 PoC Published
- Apr 24, 2024 CVE Published
- Apr 26, 2024 EPSS Score
- May 21, 2024 EPSS Score
- Jun 15, 2024 EPSS Score
- Jul 10, 2024 EPSS Score
- Aug 3, 2024 EPSS Score
- Aug 28, 2024 EPSS Score
- Sep 21, 2024 EPSS Score
- Oct 4, 2024 Coalition ESS Score
- Oct 16, 2024 EPSS Score
- Oct 16, 2024 Coalition ESS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-0970.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0970 advisory
- https://www.ibm.com/support/pages/node/7149330 advisory
- https://www.ibm.com/support/pages/node/7149814 advisory
- https://www.ibm.com/support/pages/node/7149960 advisory
- https://www.ibm.com/support/pages/node/7150308 advisory
- https://www.ibm.com/support/pages/node/7150658 advisory
- https://www.ibm.com/support/pages/node/7156266 advisory
- https://www.ibm.com/support/pages/node/7158055 advisory
- https://www.ibm.com/support/pages/node/7145534 advisory
- https://www.ibm.com/support/pages/node/7158639 advisory
- https://www.ibm.com/support/pages/node/7157976 advisory
- https://www.ibm.com/support/pages/node/7158959 advisory
- https://www.ibm.com/support/pages/node/7159010 advisory
- https://www.ibm.com/support/pages/node/7159714 advisory
- https://www.ibm.com/support/pages/node/7166619 advisory
- https://www.ibm.com/support/pages/node/7167730 advisory
- https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0115052 advisory
- https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-1488.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-1488 advisory
…and 21 more