CVE-2024-43800 — Vulnetix

CVE-2024-43800 PUBLISHED CVSS 9.300000190734863 CRITICAL

IBM App Connect Enterprise kombiniert die branchenbewährten Technologien des IBM Integration Bus mit Cloud-nativen Technologien.

EPSS 0.92% · 76.4th percentile

Risk Scores

CVSS 4.0

9.300000190734863

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:L/SA:N

EPSS Score

0.92%

76.4th percentile

Affected Products

Vendor	Product	Versions
Red Hat	Red Hat OpenShift Data Foundation 4
Red Hat	Red Hat OpenShift Container Platform <4.17.4
IBM	IBM App Connect Enterprise mobile(android)
IBM	IBM App Connect Enterprise Certified Container Operator <5.0.22
Red Hat	Red Hat OpenShift Data Foundation <4.14.13
IBM	IBM App Connect Enterprise <12.0.12.10
IBM	IBM DB2 Big SQL
Red Hat	Red Hat OpenShift Serverless Logic <1.35.0
IBM	IBM QRadar SIEM Pulse App <2.2.15
Red Hat	Red Hat OpenShift Network Observability <1.7.0
Red Hat	Red Hat Enterprise Linux
IBM	IBM Cognos Analytics mobile(iOS)
Red Hat	Red Hat OpenShift Container Platform <4.17.15
Red Hat	Red Hat OpenShift Data Foundation <4.14.18
IBM	IBM App Connect Enterprise <12.0.12.6
HCL	HCL BigFix
IBM	IBM QRadar SIEM Log Source Management App <7.0.11
Red Hat	Red Hat OpenShift Container Platform <4.18.10
Red Hat	Red Hat OpenShift Container Platform <4.17.2
Atlassian	Atlassian Confluence <8.5.25

…and 17 more

Exploit Intelligence

pnpm-workspace.yaml (github-poc)
pnpm-workspace.yaml (github-poc)
pnpm-workspace.yaml (github-poc)
pnpm-workspace.yaml (github-poc)
pnpm-workspace.yaml (github-poc)
pnpm-workspace.yaml (github-poc)
pnpm-workspace.yaml (github-poc)
pnpm-workspace.yaml (github-poc)
pnpm-workspace.yaml (github-poc)
pnpm-workspace.yaml (github-poc)

…and 2 more exploits

Timeline

Jan 21, 1970 Security Advisory
Sep 10, 2024 CVE Published
Sep 11, 2024 EPSS Score
Oct 1, 2024 EPSS Score
Oct 4, 2024 Coalition ESS Score
Oct 21, 2024 EPSS Score
Nov 9, 2024 EPSS Score
Nov 18, 2024 CVE Updated
Nov 29, 2024 EPSS Score
Dec 20, 2024 EPSS Score
Jan 9, 2025 EPSS Score
Jan 29, 2025 EPSS Score

References

https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-2197.json advisory
https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-2197 advisory
https://www.ibm.com/support/pages/node/7169586 advisory
https://www.ibm.com/support/pages/node/7176617 advisory
https://www.ibm.com/support/pages/node/7176660 advisory
https://access.redhat.com/errata/RHSA-2024:10906 advisory
https://www.ibm.com/support/pages/node/7184430 advisory
https://www.ibm.com/support/pages/node/7184429 advisory
https://www.ibm.com/support/pages/node/7257987 advisory
https://www.ibm.com/support/pages/node/7257986 advisory
https://www.ibm.com/support/pages/node/7257988 advisory
https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-3250.json advisory
https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-3250 advisory
https://access.redhat.com/errata/RHSA-2024:8014 advisory
https://access.redhat.com/errata/RHSA-2024:8229 advisory
https://access.redhat.com/errata/RHSA-2024:8232 advisory
https://access.redhat.com/errata/RHSA-2024:8260 advisory
https://access.redhat.com/errata/RHSA-2024:8263 advisory
https://access.redhat.com/errata/RHSA-2024:8581 advisory
https://access.redhat.com/errata/RHSA-2024:8676 advisory

…and 43 more

Open in Interactive Console →

$ Console Community · 100/wk Open console ›