VDB
CVE-2024-38809
CVE-2024-38809
PUBLISHED
CVSS 8.699999809265137 HIGH
Apache Camel ist ein Integrations-Framework, das Enterprise Integration Patterns implementiert. JBoss A-MQ ist eine Messaging-Plattform. JBoss Enterprise Application Platform ist eine skalierbare Plattform für Java-Anwendungen, inklusive JBoss Application Server, JBoss Hibernate und Boss Seam. Red Hat JBoss Data Grid ist eine verteilte In-Memory-Datenbank für den schnellen Zugriff auf große Datenvolumen und Skalierbarkeit.
EPSS 0.14% · 33.8th percentile
Risk Scores
CVSS v4.0
8.699999809265137
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
EPSS Score
0.14%
33.8th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Trellix | Trellix ePolicy Orchestrator <5.10.0 Service pack 1 Update 5 | |
| IBM | IBM SPSS Collaboration and Deployment Services | |
| Hitachi | Hitachi Ops Center | |
| IBM | IBM Rational ClearCase | |
| IBM | IBM QRadar SIEM <7.5.0 UP10 IF01 | |
| IBM | IBM Business Automation Workflow <24.0.0-IF004 | |
| NetApp | NetApp ActiveIQ Unified Manager | |
| Red Hat | Red Hat Enterprise Linux | |
| IBM | IBM Business Automation Workflow <21.0.3-IF039 | |
| Atlassian | Atlassian Bitbucket <8.19.25 (LTS) | |
| Atlassian | Atlassian Bamboo <10.0.3 | |
| VMware Tanzu | VMware Tanzu Spring Framework <5.3.38 | |
| Red Hat | Red Hat Integration Camel K 1 | |
| VMware Tanzu | VMware Tanzu Spring Framework <6.0.23 | |
| IBM | IBM Business Automation Workflow | |
| Red Hat | Red Hat JBoss Data Grid | |
| IBM | IBM Security Guardium 12.0 | |
| Red Hat | Red Hat JBoss Enterprise Application Platform Quarkus | |
| Red Hat | Red Hat JBoss A-MQ Streams 2 | |
| IBM | IBM Cognos Analytics <12.0.4 IF2 |
…and 14 more
Timeline
- Aug 14, 2024 CVE Published
- Sep 28, 2024 EPSS Score
- Oct 4, 2024 Coalition ESS Score
- Oct 17, 2024 EPSS Score
- Nov 5, 2024 EPSS Score
- Nov 25, 2024 EPSS Score
- Dec 15, 2024 EPSS Score
- Jan 3, 2025 EPSS Score
- Jan 22, 2025 EPSS Score
- Feb 10, 2025 EPSS Score
- Mar 2, 2025 EPSS Score
- Mar 21, 2025 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-3180.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-3180 advisory
- https://access.redhat.com/errata/RHSA-2024:8064 advisory
- https://access.redhat.com/errata/RHSA-2024:8339 advisory
- https://www.ibm.com/support/pages/node/7174634 advisory
- https://access.redhat.com/errata/RHSA-2024:8824 advisory
- https://access.redhat.com/errata/RHSA-2024:8823 advisory
- https://access.redhat.com/errata/RHSA-2024:8826 advisory
- https://confluence.atlassian.com/pages/viewpage.action?pageId=1456179091 advisory
- https://access.redhat.com/errata/RHSA-2024:11023 advisory
- https://confluence.atlassian.com/security/security-bulletin-january-21-2025-1489803942.html advisory
- https://www.ibm.com/support/pages/node/7183676 advisory
- https://access.redhat.com/errata/RHSA-2025:2416 advisory
- https://www.ibm.com/support/pages/node/7248128 advisory
- https://confluence.atlassian.com/security/security-bulletin-november-18-2025-1671463469.html advisory
- https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-1853.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-1853 advisory
- https://spring.io/blog/2024/08/14/spring-framework-releases-fixes-for-cve-2024-38808-and-cve-2024-38809 advisory
- https://spring.io/security/cve-2024-38808 advisory
- https://spring.io/security/cve-2024-38809 advisory
…and 20 more