6.2 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
0.0004 Low
EPSS
Percentile
9.0%
IBM App Connect Enterprise and IBM Integration Bus are vulnerable to a denial of service for integration nodes on Windows (CVE-2023-45176)
CVEID:CVE-2023-45176
**DESCRIPTION:**IBM App Connect Enterprise and IBM Integration Bus are vulnerable to a denial of service for integration nodes on Windows.
CVSS Base score: 6.2
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/267998 for the current score.
CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)
Affected Product(s) | Version(s) |
---|---|
IBM App Connect Enterprise | 12.0.1.0 - 12.0.10.0 |
IBM App Connect Enterprise | 11.0.0.1 - 11.0.0.23 |
IBM Integration Bus | 10.1 - 10.1.0.1 |
IBM strongly recommends addressing the vulnerability/vulnerabilities now by applying the appropriate fix to****IBM Integration Bus
Product(s) | Version(s) | APAR | Remediation / Fix |
---|---|---|---|
IBM App Connect Enterprise | 12.0.1.0 - 12.0.10.0 | PH57096 |
Interim fix for APAR (PH57096) is available to apply to 12.0.10.0 from Fix Central
IBM App Connect Enterprise| 11.0.0.1 - 11.0.0.23| PH57096|
Interim fix for APAR (PH57096) is available to apply to 11.0.0.22 and 11.0.0.23 from Fix Central
IBM Integration Bus| 10.1 - 10.1.0.1| PH57096|
Interim fix for APAR (PH57096) is available to apply to 10.1.0.1 from Fix Central
None
6.2 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
0.0004 Low
EPSS
Percentile
9.0%