CVE-2024-48948 — Vulnetix

CVE-2024-48948 PUBLISHED CVSS 8.699999809265137 HIGH

IBM App Connect Enterprise kombiniert die branchenbewährten Technologien des IBM Integration Bus mit Cloud-nativen Technologien.

EPSS 0.16% · 36.9th percentile

Risk Scores

CVSS 4.0

8.699999809265137

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

EPSS Score

0.16%

36.9th percentile

Affected Products

Vendor	Product	Versions
IBM	IBM QRadar SIEM Log Source Management App <7.0.11
IBM	IBM QRadar SIEM Data Synchronization App <3.2.1
IBM	IBM App Connect Enterprise <13.0.2.1
IBM	IBM App Connect Enterprise Certified Container <11.6.0
IBM	IBM App Connect Enterprise mobile(android)
IBM	IBM App Connect Enterprise Certified Container <12.0
IBM	IBM Cognos Analytics mobile(iOS)
IBM	IBM QRadar SIEM 7.5.0
IBM	IBM App Connect Enterprise
Red Hat	Red Hat Enterprise Linux
IBM	IBM App Connect Enterprise <12.0.12.10

Exploit Intelligence

https://github.com/indutny/elliptic/issues/321 (nist-nvd)
https://github.com/indutny/elliptic/pull/322 (nist-nvd)
ScanOssFunTest.kt (github-poc)
ScanOssFunTest.kt (github-poc)
ScanOssFunTest.kt (github-poc)
ScanOssFunTest.kt (github-poc)
ScanOssFunTest.kt (github-poc)
ScanOssFunTest.kt (github-poc)
ScanOssFunTest.kt (github-poc)
ScanOssFunTest.kt (github-poc)

…and 1 more exploits

Timeline

Oct 15, 2024 CVE Published
Oct 16, 2024 EPSS Score
Oct 16, 2024 Coalition ESS Score
Nov 4, 2024 EPSS Score
Nov 6, 2024 Coalition ESS Score
Nov 22, 2024 EPSS Score
Dec 12, 2024 EPSS Score
Dec 30, 2024 EPSS Score
Jan 18, 2025 EPSS Score
Feb 6, 2025 EPSS Score
Feb 24, 2025 EPSS Score
Mar 2, 2025 Coalition ESS Score

References

https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-3285.json advisory
https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-3285 advisory
https://www.ibm.com/support/pages/node/7174116 advisory
https://www.ibm.com/support/pages/node/7184429 advisory
https://www.ibm.com/support/pages/node/7184430 advisory
https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-0043.json advisory
https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-0043 advisory
https://www.ibm.com/support/pages/node/7180725 advisory
https://www.ibm.com/support/pages/node/7181570 advisory
https://www.ibm.com/support/pages/node/7181915 advisory
https://access.redhat.com/errata/RHSA-2025:0892 advisory
https://access.redhat.com/errata/RHSA-2025:1051 advisory
https://www.ibm.com/support/pages/node/7184092 advisory
https://www.ibm.com/support/pages/node/7184955 advisory
https://www.ibm.com/support/pages/node/7186423 advisory

Open in Interactive Console →

$ Console Community · 100/wk Open console ›