CVE-2024-33883 — Vulnetix

CVE-2024-33883 PUBLISHED CVSS 8.699999809265137 HIGH

In HCL BigFix existieren mehrere Schwachstellen in mehreren Third Party Komponenten. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und die Integrität zu gefährden.

EPSS 1.54% · 81.7th percentile

Risk Scores

CVSS v4.0

8.699999809265137

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

EPSS Score

1.54%

81.7th percentile

Affected Products

Vendor	Product	Versions
IBM	IBM Spectrum Protect Plus <10.1.17.1
IBM	IBM DB2 on Cloud Pak for Data
IBM	IBM QRadar SIEM
IBM	IBM App Connect Enterprise <12.0.12.10
IBM	IBM Cognos Analytics <11.2.4 IF4
HCL	HCL BigFix WebUI
IBM	IBM QRadar SIEM Log Source Management App <7.0.11
HCL	HCL BigFix Server Automation
IBM	IBM QRadar SIEM Data Synchronization App <3.2.1
IBM	IBM DB2 <5.1.0
IBM	IBM QRadar SIEM 7.5.0
Atlassian	Atlassian Confluence <10.1.1
Atlassian	Atlassian Confluence <8.5.25
IBM	IBM Cognos Analytics <12.0.4 IF2
IBM	IBM Spectrum Protect Plus <10.1.6.4
IBM	IBM DB2 Warehouse <5.1.0
HCL	HCL BigFix
Red Hat	Red Hat Enterprise Linux
IBM	IBM App Connect Enterprise <13.0.2.1
Atlassian	Atlassian Confluence <10.0.2

…and 4 more

Timeline

Apr 28, 2024 CVE Published
Apr 29, 2024 EPSS Score
May 23, 2024 EPSS Score
Jul 11, 2024 EPSS Score
Aug 2, 2024 CVE Updated
Aug 5, 2024 EPSS Score
Aug 29, 2024 EPSS Score
Oct 4, 2024 Coalition ESS Score
Oct 17, 2024 EPSS Score
Nov 11, 2024 EPSS Score
Dec 6, 2024 EPSS Score
Dec 30, 2024 EPSS Score

References

…and 14 more

Open in Interactive Console →