Lucene search
+L

5 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2026/03/16 9:44 p.m.7 views

Security Bulletin: IBM WebSphere Application Server, which is bundled with IBM Cloud Pak for Applications, is affected by a denial of service vulnerability due to jose4j (CVE-2024-29371)

Summary IBM WebSphere Application Server, which is bundled with IBM Cloud Pak for Applications, is affected by a denial of service vulnerability due to jose4j. Vulnerability Details Refer to the security bulletins listed in the Remediation/Fixes section Affected Products and Versions Affected...

7.5CVSS7.3AI score0.00248EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2026/03/10 5:51 p.m.9 views

Security Bulletin: A vulnerability has been identified in IBM WebSphere Application Server shipped with IBM Buinses Automation Workflow (CVE-2024-29371)

Summary WebSphere Application Server traditional is shipped as a component of IBM Business Automation Workflow traditional. Information about a security vulnerability affecting IBM WebSphere Application Server Traditional have been published in a security bulletin. Vulnerability Details Refer to...

7.5CVSS5.8AI score0.00248EPSS
Exploits1Affected Software2
IBM Security Bulletins
IBM Security Bulletins
added 2026/02/26 12:13 p.m.7 views

Security Bulletin: A vulnerability has been identified in IBM WebSphere Application Server used by IBM Rational ClearQuest (CVE-2024-29371)

Summary IBM WebSphere Application Server is used by the IBM Rational ClearQuest server. Information about security vulnerabilities affecting IBM WebSphere Application Server has been published in a security bulletin. Vulnerability Details Refer to the security bulletins listed in the...

7.5CVSS5.4AI score0.00248EPSS
Exploits1Affected Software1
Circl
Circl
added 2025/12/17 5:41 p.m.2 views

CVE-2024-29371

creationtimestamp| type| source ---|---|--- 2025-12-17 17:41:29+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ma77heskqb2o 2025-12-17 18:55:11+00:00| seen| https://gist.github.com/Darkcrai86/e8e19e2757607de795de3cc1de7abee6 2026-02-25 16:45:06+00:00| seen|...

7.5CVSS7.2AI score0.00248EPSS
Exploits1References6
NVD
NVD
added 2025/12/17 4:16 p.m.7 views

CVE-2024-29371

In jose4j before 0.9.6, an attacker can cause a Denial-of-Service DoS condition by crafting a malicious JSON Web Encryption JWE token with an exceptionally high compression ratio. When this token is processed by the server, it results in significant memory allocation and processing time during...

7.5CVSS0.00248EPSS
Exploits1References1
Rows per page
Query Builder