Lucene search

[email protected]NVD:CVE-2024-31904

HistoryMay 22, 2024 - 7:15 p.m.

CVE-2024-31904

2024-05-2219:15:09

CWE-248

[email protected]

web.nvd.nist.gov

nvd

ibm

app connect enterprise

denial of service

authenticated user

uncaught exception

x-force

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

AI Score

6.3

Confidence

High

EPSS

Percentile

9.0%

JSON

IBM App Connect Enterprise 11.0.0.1 through 11.0.0.25 and 12.0.1.0 through 12.0.12.0 integration nodes could allow an authenticated user to cause a denial of service due to an uncaught exception. IBM X-Force ID: 289647.

References

exchange.xforce.ibmcloud.com/vulnerabilities/289647

www.ibm.com/support/pages/node/7154607

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

AI Score

6.3

Confidence

High

EPSS

Percentile

9.0%

JSON

Related for NVD:CVE-2024-31904

cve1 cvelist1 ibm2 vulnrichment1