CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
EPSS
Percentile
47.2%
Multiple vulnerabilities have been identified in IBM Java which is shipped with IBM® Intelligent Operations Center. Information about these vulnerabilities affecting IBM® Intelligent Operations Center have been published and addressed the applicable CVEs.
CVEID:CVE-2023-21830
**DESCRIPTION:**An unspecified vulnerability in Java SE related to the Serialization component could allow a remote attacker to cause a denial of service resulting in a low integrity impact using unknown attack vectors.
CVSS Base score: 5.3
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/245038 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N)
CVEID:CVE-2023-21843
**DESCRIPTION:**An unspecified vulnerability in Java SE related to the Sound component could allow a remote attacker to cause a denial of service resulting in a low integrity impact using unknown attack vectors.
CVSS Base score: 3.7
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/245037 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N)
Affected Product(s) | Version(s) |
---|---|
Intelligent Operations Center (IOC) | 5.1.0, 5.1.0.2, 5.1.0.3, 5.1.0.4, 5.1.0.6, 5.2, 5.2.1, 5.2.2, 5.2.3 |
The recommended solution is to apply an interim fix that contains the fix for this issue as soon as practical.
Download the IBM Intelligent Operations Center Version 5.2.4 is an upgrade to IBM Intelligent Operations Center Version 5.2.3 through IBM Intelligent Operations Center Version 5.2 from the following link:
IBM Intelligent Operations Center Version 5.2.4
Installation instructions for the fix are included in the readme document that is in the fix package.
None
Vendor | Product | Version | CPE |
---|---|---|---|
ibm | intelligent_operations_center | 5.1.0 | cpe:2.3:a:ibm:intelligent_operations_center:5.1.0:*:*:*:*:*:*:* |
ibm | intelligent_operations_center | 5.1.0.2 | cpe:2.3:a:ibm:intelligent_operations_center:5.1.0.2:*:*:*:*:*:*:* |
ibm | intelligent_operations_center | 5.1.0.3 | cpe:2.3:a:ibm:intelligent_operations_center:5.1.0.3:*:*:*:*:*:*:* |
ibm | intelligent_operations_center | 5.1.0.4 | cpe:2.3:a:ibm:intelligent_operations_center:5.1.0.4:*:*:*:*:*:*:* |
ibm | intelligent_operations_center | 5.1.0.6 | cpe:2.3:a:ibm:intelligent_operations_center:5.1.0.6:*:*:*:*:*:*:* |
ibm | intelligent_operations_center | 5.2 | cpe:2.3:a:ibm:intelligent_operations_center:5.2:*:*:*:*:*:*:* |
ibm | intelligent_operations_center | 5.2.1 | cpe:2.3:a:ibm:intelligent_operations_center:5.2.1:*:*:*:*:*:*:* |
ibm | intelligent_operations_center | 5.2.2 | cpe:2.3:a:ibm:intelligent_operations_center:5.2.2:*:*:*:*:*:*:* |
ibm | intelligent_operations_center | 5.2.3 | cpe:2.3:a:ibm:intelligent_operations_center:5.2.3:*:*:*:*:*:*:* |
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
EPSS
Percentile
47.2%