Lucene search

Security Bulletin: Denial of Service vulnerability in Spring may affect IBM Business Automation Workflow - CVE-2023-20861

🗓️ 28 Apr 2023 17:05:07Reported by IBMType

ibm🔗 www.ibm.com👁 28 Views

IBM Business Automation Workflow vulnerability in Spring expression

Reporter	Title	Published	Views	Family All 77
UbuntuCve	CVE-2023-20861	23 Mar 202300:00	–	ubuntucve
IBM Security Bulletins	Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to a denial of service in VMware Tanzu Spring Framework (CVE-2023-20861)	28 Jun 202320:44	–	ibm
IBM Security Bulletins	Security Bulletin: IBM ECM Content Management Interoperability Services (CMIS) spring-expression security vulnerability CVE-2023-20861	3 May 202317:28	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerability in Spring Framework affects IBM Process Mining . CVE-2023-20861	5 May 202314:43	–	ibm
IBM Security Bulletins	Security Bulletin: VMware Tanzu Spring Framework is vulnerable to CVE-2023-20861 and CVE-2023-20863 used in IBM Maximo Application Suite - Monitor Component	24 Jul 202320:30	–	ibm
IBM Security Bulletins	Security Bulletin: IBM InfoSphere Information Server is affected by multiple vulnerabilities in VMware Tanzu Spring Framework [CVE-2023-20861, CVE-2023-20860]	12 Feb 202419:04	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in VMware Tanzu Spring Framework affect IBM Process Designer 8.5.7 shipped with IBM Business Automation Workflow	5 Jun 202315:11	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Watson Discovery Cartridge for IBM Cloud Pak for Data affected by vulnerability in VMware Tanzu Spring Framework	2 May 202322:18	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Spectrum Symphony with Spring Framework is vulnerable to a denial of service, caused by improper input validation	5 Oct 202320:36	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Watson Assistant for IBM Cloud Pak for Data is vulnerable to VMware Tanzu Spring Framework security bypass and denial of service vulnerabilities [CVE-2023-20860, CVE-2023-20861]	6 Jul 202318:07	–	ibm

Vulners

Node

ibm ibm_business_automation_workflowMatch18.0.0.0

ibm ibm_business_automation_workflowMatch18.0.0.1

ibm ibm_business_automation_workflowMatch18.0.0.2

ibm ibm_business_automation_workflowMatch19.0.0.1

ibm ibm_business_automation_workflowMatch19.0.0.2

ibm ibm_business_automation_workflowMatch19.0.0.3

ibm ibm_business_automation_workflowMatch20.0.0.1

ibm ibm_business_automation_workflowMatch20.0.0.2

ibm ibm_business_automation_workflowMatch21.0.2

ibm ibm_business_automation_workflowMatch21.0.3

ibm ibm_business_automation_workflowMatch22.0.1

ibm ibm_business_automation_workflowMatch22.0.2

ibm ibm_business_automation_workflow_enterprise_service_busMatch22.0.2

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

28 Apr 2023 17:07Current

6.8Medium risk

Vulners AI Score6.8

CVSS36.5

EPSS0.001