VDB
CVE-2024-37532
CVE-2024-37532
PUBLISHED
Es besteht eine Schwachstelle in IBM WebSphere Application Server, die auf eine unsachgemäße Signaturvalidierung zurückzuführen ist und zu Identitätsspoofing führt. Ein entfernter, authentisierter Angreifer kann diese Schwachstelle ausnutzen, um seine Privilegien zu erhöhen und so unbefugten Zugriff auf vertrauliche Informationen und Systemfunktionen zu erhalten.
EPSS 0.13% · 33.0th percentile
Risk Scores
EPSS Score
0.13%
33.0th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| IBM | IBM Rational ClearQuest 8.0.0 | |
| HCL | HCL Commerce 8.x | |
| IBM | IBM WebSphere Application Server <9.0.5.21 | |
| IBM | IBM Rational ClearQuest 9.0.0 | |
| IBM | IBM Maximo Asset Management 7.6.1.3 | |
| IBM | IBM Maximo Asset Management 7.6.1.2 | |
| IBM | IBM Rational ClearQuest 8.0.1 | |
| IBM | IBM Tivoli Key Lifecycle Manager 4.1 | |
| IBM | IBM Rational ClearQuest 9.0.1 | |
| HCL | HCL Commerce 9.0-9.0.1.21 | |
| IBM | IBM Tivoli Key Lifecycle Manager 4.0 | |
| IBM | IBM Rational ClearQuest 9.0.2 | |
| IBM | IBM Rational ClearQuest 9.1.0 | |
| HCL | HCL Commerce 9.1.0-9.1.15 | |
| IBM | IBM WebSphere Application Server <8.5.5.26 | |
| IBM | IBM Tivoli Monitoring 6.3.0.7 | |
| IBM | IBM WebSphere Service Registry and Repository 8.5 |
Timeline
- Jun 20, 2024 CVE Published
- Jun 21, 2024 EPSS Score
- Jul 14, 2024 EPSS Score
- Aug 2, 2024 CVE Updated
- Aug 5, 2024 EPSS Score
- Aug 28, 2024 EPSS Score
- Sep 20, 2024 EPSS Score
- Oct 4, 2024 Coalition ESS Score
- Oct 12, 2024 EPSS Score
- Nov 4, 2024 EPSS Score
- Nov 27, 2024 EPSS Score
- Dec 20, 2024 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-1426.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-1426 advisory
- https://www.ibm.com/support/pages/node/7158031 advisory
- https://www.ibm.com/support/pages/node/7158539 advisory
- https://www.ibm.com/support/pages/node/7159656 advisory
- https://www.ibm.com/support/pages/node/7160298 advisory
- https://www.ibm.com/support/pages/node/7160610 advisory
- https://www.ibm.com/support/pages/node/7166853 advisory
- https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0115052 advisory