7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
0.002 Low
EPSS
Percentile
57.2%
There is a vulnerability in IBM® Runtime Environment Java™ Version 8 used by Host On-Demand. Host On-Demand has provided a fix for the applicable CVEs. This issue was disclosed as part of the IBM Java SDK and Runtime Environment updates in CVE-2023-30441.
CVEID:CVE-2023-30441
**DESCRIPTION:**IBM Runtime Environment, Java Technology Edition IBMJCEPlus and JSSE 8.0.7.0 through 8.0.7.11 components could expose sensitive information using a combination of flaws and configurations. IBM X-Force ID: 253188.
CVSS Base score: 7.5
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/253188 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N)
Affected Product(s) | Version(s) |
---|---|
Host On-Demand | V13 - 13.0.7.0_iFix001 |
Host On-Demand | V14 - 14.0.6.0_iFix001 |
IBM strongly recommends addressing the vulnerability now by installing this fix or a newer iFix or Fix Pack.
IBM Host On-Demand Server Fix
Product
|
VRMF
|
Remediation
|
**File Name **
—|—|—|—
Host On-Demand
|
13.0 - 13.0.7.0_iFix001
|
|
HOD_13.0.7.0_iFix001
Host On-Demand
|
14.0 - 14.0.6.0_iFix001
|
|
HOD_14.0.6.0_iFix001
**IBM Host On-Demand Client Fix **
Product
|
VRMF
|
Remediation*
|
**File Name **
—|—|—|—
Host On-Demand
|
13.0 - 13.0.7.0_iFix001
14.0 - 14.0.6.0_iFix001
|
|
IBM_JRE_8.0.8.5_WIN64
IBM_JRE_8.0.8.5_WIN32
*(Fix Central - search IBM Host On-Demand (All releases, All platforms))
None
CPE | Name | Operator | Version |
---|---|---|---|
ibm host on-demand | eq | 13.0. | |
ibm host on-demand | eq | 14.0. |
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
0.002 Low
EPSS
Percentile
57.2%