VDB

CVE-2024-49766

CVE-2024-49766 PUBLISHED

Es bestehen mehrere Schwachstellen in IBM InfoSphere Information Server. Diese Fehler existieren in der Komponente „Werkzeug“ wegen einer Pfadumgehung und eines unkontrollierten Ressourcenverbrauchs. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand zu erzeugen oder vertrauliche Informationen offenzulegen.

EPSS 1.39% · 80.7th percentile

Risk Scores

EPSS Score
1.39%
80.7th percentile

Affected Products

VendorProductVersions
OracleOracle Communications 24.2.1
OracleOracle Communications 24.1.1
OracleOracle Communications 23.4.4
OracleOracle Communications 14.0
OracleOracle Communications 8.6.0.4.0
OracleOracle Communications 24.3.0
OracleOracle Communications 15.0.0.0.0
OracleOracle Communications 24.1.0
OracleOracle Communications 47.0.0.0.0
OracleOracle Communications 9.3.0
OracleOracle Communications 8.1
OracleOracle Communications <=9.1.1.9
OracleOracle Communications 8.0
OracleOracle Communications 5.1
OracleOracle Communications 9.0
IBMIBM InfoSphere Information Server <11.7.1.5
OracleOracle Communications 24.2.0
OracleOracle Communications 4.1.0
OracleOracle Communications <=24.2.2
OracleOracle Communications 4.2.0

…and 11 more

Timeline

  • Jan 21, 1970 Security Advisory
  • Oct 25, 2024 CVE Published
  • Oct 25, 2024 Coalition ESS Score
  • Oct 26, 2024 EPSS Score
  • Oct 28, 2024 Coalition ESS Score
  • Nov 13, 2024 EPSS Score
  • Dec 2, 2024 EPSS Score
  • Dec 21, 2024 EPSS Score
  • Jan 8, 2025 EPSS Score
  • Jan 26, 2025 EPSS Score
  • Feb 8, 2025 Coalition ESS Score
  • Feb 13, 2025 EPSS Score

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›