Lucene search
This script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.WEBSPHERE_7145942.NASLHistoryApr 04, 2024 - 12:00 a.m.
IBM WebSphere Application Server 8.5.5.3 < 8.5.5.26 / 9.x < 9.0.5.20 / Liberty 21.0.0.3 < 24.0.0.4 DoS (7145942)
2024-04-0400:00:00
This script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
13
ibm websphere application server
dos vulnerability
cpu consumption
The version of IBM WebSphere Application Server running on the remote host is affected by a DoS vulnerability as referenced in the 7145942 advisory.
- The jose4j component before 0.9.4 for Java allows attackers to cause a denial of service (CPU consumption) via a large p2c (aka PBES2 Count) value. (CVE-2023-51775)
Note that Nessus has not tested for this issue but has instead relied only on the applicationโs self-reported version number.
#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##
include('compat.inc');
if (description)
{
script_id(192936);
script_version("1.0");
script_set_attribute(attribute:"plugin_modification_date", value:"2024/04/04");
script_cve_id("CVE-2023-51775");
script_name(english:"IBM WebSphere Application Server 8.5.5.3 < 8.5.5.26 / 9.x < 9.0.5.20 / Liberty 21.0.0.3 < 24.0.0.4 DoS (7145942)");
script_set_attribute(attribute:"synopsis", value:
"The remote web application server is affected by a DoS vulnerability.");
script_set_attribute(attribute:"description", value:
"The version of IBM WebSphere Application Server running on the remote host is affected by a DoS vulnerability as
referenced in the 7145942 advisory.
- The jose4j component before 0.9.4 for Java allows attackers to cause a denial of service (CPU consumption)
via a large p2c (aka PBES2 Count) value. (CVE-2023-51775)
Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version
number.");
script_set_attribute(attribute:"see_also", value:"https://www.ibm.com/support/pages/node/7145942");
script_set_attribute(attribute:"solution", value:
"Update to IBM WebSphere Application Server version 8.5.5.26, 9.0.5.20, 24.0.0.4 Liberty or later. Alternatively, upgrade
to the minimal fix pack levels required by the interim fix and then apply Interim Fix PH60195 / PH60199.");
script_set_attribute(attribute:"agent", value:"all");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2023-51775");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"vuln_publication_date", value:"2024/02/29");
script_set_attribute(attribute:"patch_publication_date", value:"2024/04/04");
script_set_attribute(attribute:"plugin_publication_date", value:"2024/04/04");
script_set_attribute(attribute:"plugin_type", value:"combined");
script_set_attribute(attribute:"cpe", value:"cpe:/a:ibm:websphere_application_server");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Web Servers");
script_copyright(english:"This script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("websphere_detect.nasl", "ibm_enum_products.nbin", "ibm_websphere_application_server_nix_installed.nbin", "ibm_websphere_application_server_win_installed.nbin");
script_require_keys("installed_sw/IBM WebSphere Application Server");
exit(0);
}
include('vcf.inc');
var app = 'IBM WebSphere Application Server';
var app_info = vcf::combined_get_app_info(app:app);
vcf::check_granularity(app_info:app_info, sig_segments:4);
# If the detection is only remote, Source will be set, and we should require paranoia
var require_paranoid = FALSE;
if (!empty_or_null(app_info['Source']) && app_info['Source'] != 'unknown' && report_paranoia < 2)
require_paranoid = TRUE;
if ('PH60195' >< app_info['Fixes'] || 'PH60199' >< app_info['Fixes'])
audit(AUDIT_INST_VER_NOT_VULN, app);
var constraints = [
{ 'min_version' : '8.5.5.3', 'fixed_version' : '8.5.5.26', 'fixed_display' : '8.5.5.26 or Interim Fix PH60195' },
{ 'min_version' : '9.0.0.0', 'fixed_version' : '9.0.5.20', 'fixed_display' : '9.0.5.20 or Interim Fix PH60195' },
{ 'min_version' : '21.0.0.3', 'fixed_version' : '24.0.0.4', 'fixed_display' : '24.0.0.4 or Interim Fix PH60199' }
];
vcf::check_version_and_report(
app_info:app_info,
constraints:constraints,
require_paranoia:require_paranoid,
severity:SECURITY_HOLE
);
| Vendor | Product | Version | CPE |
|---|---|---|---|
| ibm | websphere_application_server | cpe:/a:ibm:websphere_application_server |
Related
wolfi
wolfi
CVE-2023-51775 vulnerabilities
2024-05-29 03:07:31
cgr
cgr
CVE-2023-51775 vulnerabilities
2024-05-19 03:07:16
ubuntucve
ubuntucve
CVE-2023-51775
2024-02-29 00:00:00
ibm
ibm
github
github
jose4j denial of service via specifically crafted JWE
2024-02-29 03:33:14
veracode
veracode
Denial Of Service (DoS)
2024-03-05 06:37:59
nessus
nessus
SUSE SLES15 Security Update : SUSE Manager Server 4.3 (SUSE-SU-2024:1507-1)
2024-05-07 00:00:00
SUSE SLES15 Security Update : SUSE Manager Server 4.3 (SUSE-SU-2024:1532-1)
2024-05-07 00:00:00
nvd
nvd
CVE-2023-51775
2024-02-29 01:42:05
osv
osv
CVE-2023-51775
2024-02-29 01:42:05
jose4j denial of service via specifically crafted JWE
2024-02-29 03:33:14
redhatcve
redhatcve
CVE-2023-51775
2024-02-29 09:03:19
cve
cve
CVE-2023-51775
2024-02-29 01:42:05
prion
prion
Design/Logic Flaw
2024-02-29 01:42:00
debiancve
debiancve
CVE-2023-51775
2024-02-29 01:42:05
cvelist
cvelist
CVE-2023-51775
2023-12-25 00:00:00
redhat
redhat
oracle
oracle
Oracle Critical Patch Update Advisory - April 2024
2024-04-16 00:00:00