Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ibmIBMDD9CC0361ED6BA10F911AC2D2F9653E3F72B02101C5BB853334BFBE0DB945D3B
HistorySep 26, 2024 - 3:40 p.m.

Security Bulletin: Vulnerability in glibc affects IBM Integrated Analytics System [ CVE-2023-4813]

2024-09-2615:40:50
www.ibm.com
4
ibm integrated analytics system
glibc
vulnerability
denial of service
fix

CVSS3

5.9

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

AI Score

6.8

Confidence

High

JSON

Summary

Redhat provided glibc is used by IBM Integrated Analytics System. IBM Integrated Analytics System has addressed the applicable CVE [ CVE-2023-4813]

Vulnerability Details

CVEID:CVE-2023-4813
**DESCRIPTION:**glibc is vulnerable to a denial of service, caused by a use-after-free flaw in the gaih_inet function. By sending a specially crafted request, a remote attacker could exploit this vulnerability to cause a denial of service.
CVSS Base score: 5.9
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/265904 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H)

Affected Products and Versions

Affected Product(s) Version(s)
IBM Integrated Analytics System 1.0.0-1.0.28.2

Remediation/Fixes

Affected Product(s) VRMF Remediation/Fixes
IBM Integrated Analytics System 1.0.30.0 Link to Fix Central

Workarounds and Mitigations

None

Affected configurations

Vulners
Node
ibmsmart_analytics_system_7710Matchany
VendorProductVersionCPE
ibmsmart_analytics_system_7710anycpe:2.3:a:ibm:smart_analytics_system_7710:any:*:*:*:*:*:*:*

Related

prion 1
nessus 38
openvas 19
cvelist 1
osv 7
nvd 1
ibm 10
redhatcve 1
debiancve 1
cve 1
ubuntucve 2
redhat 77
photon 2
ubuntu 2
cloudfoundry 2
almalinux 2
rocky 1
oraclelinux 4
rosalinux 1
hp 2
ics 1
prion
prion
Design/Logic Flaw
2023-09-12 22:15:00
nessus
nessus
EulerOS Virtualization 2.10.0 : glibc (EulerOS-SA-2023-3471)
2024-01-16 00:00:00
Photon OS 4.0: Glibc PHSA-2023-4.0-0533
2024-07-23 00:00:00
EulerOS 2.0 SP10 : glibc (EulerOS-SA-2023-3212)
2024-01-16 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for glibc (EulerOS-SA-2024-1139)
2024-02-09 00:00:00
SUSE: Security Advisory (SUSE-SU-2023:4110-1)
2023-10-19 00:00:00
Huawei EulerOS: Security Advisory for glibc (EulerOS-SA-2023-3499)
2023-12-22 00:00:00
cvelist
cvelist
CVE-2023-4813 Glibc: potential use-after-free in gaih_inet()
2023-09-12 21:54:33
osv
osv
CVE-2023-4813
2023-09-12 22:15:08
glibc-2.38-6.1 on GA media
2024-06-15 00:00:00
glibc vulnerabilities
2023-12-07 16:24:50
nvd
nvd
CVE-2023-4813
2023-09-12 22:15:08
ibm
ibm
Security Bulletin: IBM Storage Ceph is vulnerable to Use After Free in the RHEL UBI (CVE-2023-4813)
2024-01-19 22:37:15
Security Bulletin: IBM MQ Operator and Queue manager container images are vulnerable to multiple vulnerabilities from libcurl, glibc-minimal-langpack, glibc-common, ncurses-libs and Kubernetes
2023-11-16 16:21:31
Security Bulletin: Multiple security vulnerabilities are addressed with IBM Business Automation Manager Open Editions 8.0.4-IF001
2023-11-29 20:20:25
redhatcve
redhatcve
CVE-2023-4813
2023-09-12 14:54:22
debiancve
debiancve
CVE-2023-4813
2023-09-12 22:15:08
cve
cve
CVE-2023-4813
2023-09-12 22:15:08
ubuntucve
ubuntucve
CVE-2023-4813
2023-09-12 00:00:00
CVE-2023-4806
2023-09-18 00:00:00
redhat
redhat
(RHSA-2023:7409) Moderate: glibc security update
2023-11-21 09:53:27
(RHSA-2023:5453) Important: glibc security update
2023-10-05 10:04:00
(RHSA-2023:5455) Important: glibc security update
2023-10-05 10:08:32
photon
photon
Moderate Photon OS Security Update - PHSA-2023-3.0-0691
2023-11-23 00:00:00
Important Photon OS Security Update - PHSA-2023-4.0-0533
2023-12-23 00:00:00
ubuntu
ubuntu
GNU C Library regression
2024-01-10 00:00:00
GNU C Library vulnerabilities
2023-12-07 00:00:00
cloudfoundry
cloudfoundry
USN-6541-1: GNU C Library vulnerabilities | Cloud Foundry
2024-04-04 00:00:00
USN-6541-2: GNU C Library regression | Cloud Foundry
2024-02-29 00:00:00
almalinux
almalinux
Important: glibc security update
2023-10-05 00:00:00
Important: glibc security update
2023-10-05 00:00:00
rocky
rocky
glibc security update
2023-10-06 22:57:06
oraclelinux
oraclelinux
glibc security update
2023-10-12 00:00:00
glibc security update
2023-10-10 00:00:00
glibc security update
2023-10-12 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2024-2332
2024-01-30 08:26:13
hp
hp
HP ThinPro 8.1 SP 2 Security Updates
2024-04-12 00:00:00
HP ThinPro 8.0 SP 8 Security Updates
2024-03-01 00:00:00
ics
ics
Siemens SIMATIC S7-1500 CPU 1518(F)-4 PN/DP MFP V3.1
2023-12-14 12:00:00

CVSS3

5.9

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

AI Score

6.8

Confidence

High

JSON
Related for DD9CC0361ED6BA10F911AC2D2F9653E3F72B02101C5BB853334BFBE0DB945D3B
prion1nessus38openvas19cvelist1osv7nvd1ibm10redhatcve1debiancve1cve1ubuntucve2redhat77photon2ubuntu2cloudfoundry2almalinux2rocky1oraclelinux4rosalinux1hp2ics1