Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2024-26826 (GCVE-0-2024-26826)
Vulnerability from cvelistv5 – Published: 2024-04-17 09:43 – Updated: 2026-05-11 20:04
VLAI
EPSS
VEX
Title
mptcp: fix data re-injection from stale subflow
Summary
In the Linux kernel, the following vulnerability has been resolved:
mptcp: fix data re-injection from stale subflow
When the MPTCP PM detects that a subflow is stale, all the packet
scheduler must re-inject all the mptcp-level unacked data. To avoid
acquiring unneeded locks, it first try to check if any unacked data
is present at all in the RTX queue, but such check is currently
broken, as it uses TCP-specific helper on an MPTCP socket.
Funnily enough fuzzers and static checkers are happy, as the accessed
memory still belongs to the mptcp_sock struct, and even from a
functional perspective the recovery completed successfully, as
the short-cut test always failed.
A recent unrelated TCP change - commit d5fed5addb2b ("tcp: reorganize
tcp_sock fast path variables") - exposed the issue, as the tcp field
reorganization makes the mptcp code always skip the re-inection.
Fix the issue dropping the bogus call: we are on a slow path, the early
optimization proved once again to be evil.
Severity
No CVSS data available.
SSVC
Exploitation: none
Automatable: no
Technical Impact: partial
CISA Coordinator (v2.0.3)
Assigner
References
Impacted products
2 products
| Vendor | Product | Version | |
|---|---|---|---|
| Linux | Linux |
Affected:
1e1d9d6f119c55c05e8ea78ed3e49046690abffd , < 6f95120f898b40d13fd441225ef511307853c9c2
(git)
Affected: 1e1d9d6f119c55c05e8ea78ed3e49046690abffd , < 6673d9f1c2cd984390550dbdf7d5ae07b20abbf8 (git) Affected: 1e1d9d6f119c55c05e8ea78ed3e49046690abffd , < b609c783c535493aa3fca22c7e40a120370b1ca5 (git) Affected: 1e1d9d6f119c55c05e8ea78ed3e49046690abffd , < 624902eab7abcb8731b333ec73f206d38d839cd8 (git) Affected: 1e1d9d6f119c55c05e8ea78ed3e49046690abffd , < b6c620dc43ccb4e802894e54b651cf81495e9598 (git) |
|
| Linux | Linux |
Affected:
5.15
Unaffected: 0 , < 5.15 (semver) Unaffected: 5.15.149 , ≤ 5.15.* (semver) Unaffected: 6.1.79 , ≤ 6.1.* (semver) Unaffected: 6.6.18 , ≤ 6.6.* (semver) Unaffected: 6.7.6 , ≤ 6.7.* (semver) Unaffected: 6.8 , ≤ * (original_commit_for_fix) |
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-02T00:14:13.531Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://git.kernel.org/stable/c/6f95120f898b40d13fd441225ef511307853c9c2"
},
{
"tags": [
"x_transferred"
],
"url": "https://git.kernel.org/stable/c/6673d9f1c2cd984390550dbdf7d5ae07b20abbf8"
},
{
"tags": [
"x_transferred"
],
"url": "https://git.kernel.org/stable/c/b609c783c535493aa3fca22c7e40a120370b1ca5"
},
{
"tags": [
"x_transferred"
],
"url": "https://git.kernel.org/stable/c/624902eab7abcb8731b333ec73f206d38d839cd8"
},
{
"tags": [
"x_transferred"
],
"url": "https://git.kernel.org/stable/c/b6c620dc43ccb4e802894e54b651cf81495e9598"
}
],
"title": "CVE Program Container"
},
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2024-26826",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-09-10T15:49:00.883183Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-09-11T17:33:30.420Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "Linux",
"programFiles": [
"net/mptcp/protocol.c"
],
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"vendor": "Linux",
"versions": [
{
"lessThan": "6f95120f898b40d13fd441225ef511307853c9c2",
"status": "affected",
"version": "1e1d9d6f119c55c05e8ea78ed3e49046690abffd",
"versionType": "git"
},
{
"lessThan": "6673d9f1c2cd984390550dbdf7d5ae07b20abbf8",
"status": "affected",
"version": "1e1d9d6f119c55c05e8ea78ed3e49046690abffd",
"versionType": "git"
},
{
"lessThan": "b609c783c535493aa3fca22c7e40a120370b1ca5",
"status": "affected",
"version": "1e1d9d6f119c55c05e8ea78ed3e49046690abffd",
"versionType": "git"
},
{
"lessThan": "624902eab7abcb8731b333ec73f206d38d839cd8",
"status": "affected",
"version": "1e1d9d6f119c55c05e8ea78ed3e49046690abffd",
"versionType": "git"
},
{
"lessThan": "b6c620dc43ccb4e802894e54b651cf81495e9598",
"status": "affected",
"version": "1e1d9d6f119c55c05e8ea78ed3e49046690abffd",
"versionType": "git"
}
]
},
{
"defaultStatus": "affected",
"product": "Linux",
"programFiles": [
"net/mptcp/protocol.c"
],
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"vendor": "Linux",
"versions": [
{
"status": "affected",
"version": "5.15"
},
{
"lessThan": "5.15",
"status": "unaffected",
"version": "0",
"versionType": "semver"
},
{
"lessThanOrEqual": "5.15.*",
"status": "unaffected",
"version": "5.15.149",
"versionType": "semver"
},
{
"lessThanOrEqual": "6.1.*",
"status": "unaffected",
"version": "6.1.79",
"versionType": "semver"
},
{
"lessThanOrEqual": "6.6.*",
"status": "unaffected",
"version": "6.6.18",
"versionType": "semver"
},
{
"lessThanOrEqual": "6.7.*",
"status": "unaffected",
"version": "6.7.6",
"versionType": "semver"
},
{
"lessThanOrEqual": "*",
"status": "unaffected",
"version": "6.8",
"versionType": "original_commit_for_fix"
}
]
}
],
"cpeApplicability": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionEndExcluding": "5.15.149",
"versionStartIncluding": "5.15",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionEndExcluding": "6.1.79",
"versionStartIncluding": "5.15",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionEndExcluding": "6.6.18",
"versionStartIncluding": "5.15",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionEndExcluding": "6.7.6",
"versionStartIncluding": "5.15",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionEndExcluding": "6.8",
"versionStartIncluding": "5.15",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "In the Linux kernel, the following vulnerability has been resolved:\n\nmptcp: fix data re-injection from stale subflow\n\nWhen the MPTCP PM detects that a subflow is stale, all the packet\nscheduler must re-inject all the mptcp-level unacked data. To avoid\nacquiring unneeded locks, it first try to check if any unacked data\nis present at all in the RTX queue, but such check is currently\nbroken, as it uses TCP-specific helper on an MPTCP socket.\n\nFunnily enough fuzzers and static checkers are happy, as the accessed\nmemory still belongs to the mptcp_sock struct, and even from a\nfunctional perspective the recovery completed successfully, as\nthe short-cut test always failed.\n\nA recent unrelated TCP change - commit d5fed5addb2b (\"tcp: reorganize\ntcp_sock fast path variables\") - exposed the issue, as the tcp field\nreorganization makes the mptcp code always skip the re-inection.\n\nFix the issue dropping the bogus call: we are on a slow path, the early\noptimization proved once again to be evil."
}
],
"providerMetadata": {
"dateUpdated": "2026-05-11T20:04:53.431Z",
"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"shortName": "Linux"
},
"references": [
{
"url": "https://git.kernel.org/stable/c/6f95120f898b40d13fd441225ef511307853c9c2"
},
{
"url": "https://git.kernel.org/stable/c/6673d9f1c2cd984390550dbdf7d5ae07b20abbf8"
},
{
"url": "https://git.kernel.org/stable/c/b609c783c535493aa3fca22c7e40a120370b1ca5"
},
{
"url": "https://git.kernel.org/stable/c/624902eab7abcb8731b333ec73f206d38d839cd8"
},
{
"url": "https://git.kernel.org/stable/c/b6c620dc43ccb4e802894e54b651cf81495e9598"
}
],
"title": "mptcp: fix data re-injection from stale subflow",
"x_generator": {
"engine": "bippy-1.2.0"
}
}
},
"cveMetadata": {
"assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"assignerShortName": "Linux",
"cveId": "CVE-2024-26826",
"datePublished": "2024-04-17T09:43:51.741Z",
"dateReserved": "2024-02-19T14:20:24.181Z",
"dateUpdated": "2026-05-11T20:04:53.431Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2024-26826",
"date": "2026-07-18",
"epss": "0.00263",
"percentile": "0.179"
},
"fkie_nvd": {
"descriptions": "[{\"lang\": \"en\", \"value\": \"In the Linux kernel, the following vulnerability has been resolved:\\n\\nmptcp: fix data re-injection from stale subflow\\n\\nWhen the MPTCP PM detects that a subflow is stale, all the packet\\nscheduler must re-inject all the mptcp-level unacked data. To avoid\\nacquiring unneeded locks, it first try to check if any unacked data\\nis present at all in the RTX queue, but such check is currently\\nbroken, as it uses TCP-specific helper on an MPTCP socket.\\n\\nFunnily enough fuzzers and static checkers are happy, as the accessed\\nmemory still belongs to the mptcp_sock struct, and even from a\\nfunctional perspective the recovery completed successfully, as\\nthe short-cut test always failed.\\n\\nA recent unrelated TCP change - commit d5fed5addb2b (\\\"tcp: reorganize\\ntcp_sock fast path variables\\\") - exposed the issue, as the tcp field\\nreorganization makes the mptcp code always skip the re-inection.\\n\\nFix the issue dropping the bogus call: we are on a slow path, the early\\noptimization proved once again to be evil.\"}, {\"lang\": \"es\", \"value\": \"En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: mptcp: corrige la reinyecci\\u00f3n de datos desde un subflujo obsoleto Cuando MPTCP PM detecta que un subflujo est\\u00e1 obsoleto, todo el programador de paquetes debe reinyectar todos los datos no codificados del nivel mptcp. Para evitar adquirir bloqueos innecesarios, primero intenta verificar si hay datos no bloqueados presentes en la cola RTX, pero dicha verificaci\\u00f3n actualmente no funciona, ya que utiliza un asistente espec\\u00edfico de TCP en un socket MPTCP. Curiosamente, los fuzzers y los comprobadores est\\u00e1ticos est\\u00e1n contentos, ya que la memoria a la que se accede todav\\u00eda pertenece a la estructura mptcp_sock, e incluso desde una perspectiva funcional la recuperaci\\u00f3n se complet\\u00f3 con \\u00e9xito, ya que la prueba de acceso directo siempre fallaba. Un cambio reciente de TCP no relacionado (commit d5fed5addb2b (\\\"tcp: reorganizar las variables de ruta r\\u00e1pida de tcp_sock\\\")) expuso el problema, ya que la reorganizaci\\u00f3n del campo tcp hace que el c\\u00f3digo mptcp siempre omita la reinecci\\u00f3n. Solucione el problema eliminando la llamada falsa: estamos en un camino lento, la optimizaci\\u00f3n inicial demostr\\u00f3 una vez m\\u00e1s ser mala.\"}]",
"id": "CVE-2024-26826",
"lastModified": "2024-11-21T09:03:09.463",
"published": "2024-04-17T10:15:09.183",
"references": "[{\"url\": \"https://git.kernel.org/stable/c/624902eab7abcb8731b333ec73f206d38d839cd8\", \"source\": \"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"}, {\"url\": \"https://git.kernel.org/stable/c/6673d9f1c2cd984390550dbdf7d5ae07b20abbf8\", \"source\": \"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"}, {\"url\": \"https://git.kernel.org/stable/c/6f95120f898b40d13fd441225ef511307853c9c2\", \"source\": \"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"}, {\"url\": \"https://git.kernel.org/stable/c/b609c783c535493aa3fca22c7e40a120370b1ca5\", \"source\": \"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"}, {\"url\": \"https://git.kernel.org/stable/c/b6c620dc43ccb4e802894e54b651cf81495e9598\", \"source\": \"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"}, {\"url\": \"https://git.kernel.org/stable/c/624902eab7abcb8731b333ec73f206d38d839cd8\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://git.kernel.org/stable/c/6673d9f1c2cd984390550dbdf7d5ae07b20abbf8\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://git.kernel.org/stable/c/6f95120f898b40d13fd441225ef511307853c9c2\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://git.kernel.org/stable/c/b609c783c535493aa3fca22c7e40a120370b1ca5\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://git.kernel.org/stable/c/b6c620dc43ccb4e802894e54b651cf81495e9598\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
"sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"vulnStatus": "Awaiting Analysis"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2024-26826\",\"sourceIdentifier\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"published\":\"2024-04-17T10:15:09.183\",\"lastModified\":\"2026-06-17T07:18:26.603\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"In the Linux kernel, the following vulnerability has been resolved:\\n\\nmptcp: fix data re-injection from stale subflow\\n\\nWhen the MPTCP PM detects that a subflow is stale, all the packet\\nscheduler must re-inject all the mptcp-level unacked data. To avoid\\nacquiring unneeded locks, it first try to check if any unacked data\\nis present at all in the RTX queue, but such check is currently\\nbroken, as it uses TCP-specific helper on an MPTCP socket.\\n\\nFunnily enough fuzzers and static checkers are happy, as the accessed\\nmemory still belongs to the mptcp_sock struct, and even from a\\nfunctional perspective the recovery completed successfully, as\\nthe short-cut test always failed.\\n\\nA recent unrelated TCP change - commit d5fed5addb2b (\\\"tcp: reorganize\\ntcp_sock fast path variables\\\") - exposed the issue, as the tcp field\\nreorganization makes the mptcp code always skip the re-inection.\\n\\nFix the issue dropping the bogus call: we are on a slow path, the early\\noptimization proved once again to be evil.\"},{\"lang\":\"es\",\"value\":\"En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: mptcp: corrige la reinyecci\u00f3n de datos desde un subflujo obsoleto Cuando MPTCP PM detecta que un subflujo est\u00e1 obsoleto, todo el programador de paquetes debe reinyectar todos los datos no codificados del nivel mptcp. Para evitar adquirir bloqueos innecesarios, primero intenta verificar si hay datos no bloqueados presentes en la cola RTX, pero dicha verificaci\u00f3n actualmente no funciona, ya que utiliza un asistente espec\u00edfico de TCP en un socket MPTCP. Curiosamente, los fuzzers y los comprobadores est\u00e1ticos est\u00e1n contentos, ya que la memoria a la que se accede todav\u00eda pertenece a la estructura mptcp_sock, e incluso desde una perspectiva funcional la recuperaci\u00f3n se complet\u00f3 con \u00e9xito, ya que la prueba de acceso directo siempre fallaba. Un cambio reciente de TCP no relacionado (commit d5fed5addb2b (\\\"tcp: reorganizar las variables de ruta r\u00e1pida de tcp_sock\\\")) expuso el problema, ya que la reorganizaci\u00f3n del campo tcp hace que el c\u00f3digo mptcp siempre omita la reinecci\u00f3n. Solucione el problema eliminando la llamada falsa: estamos en un camino lento, la optimizaci\u00f3n inicial demostr\u00f3 una vez m\u00e1s ser mala.\"}],\"affected\":[{\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"affectedData\":[{\"vendor\":\"Linux\",\"product\":\"Linux\",\"defaultStatus\":\"unaffected\",\"programFiles\":[\"net/mptcp/protocol.c\"],\"repo\":\"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git\",\"versions\":[{\"version\":\"1e1d9d6f119c55c05e8ea78ed3e49046690abffd\",\"lessThan\":\"6f95120f898b40d13fd441225ef511307853c9c2\",\"versionType\":\"git\",\"status\":\"affected\"},{\"version\":\"1e1d9d6f119c55c05e8ea78ed3e49046690abffd\",\"lessThan\":\"6673d9f1c2cd984390550dbdf7d5ae07b20abbf8\",\"versionType\":\"git\",\"status\":\"affected\"},{\"version\":\"1e1d9d6f119c55c05e8ea78ed3e49046690abffd\",\"lessThan\":\"b609c783c535493aa3fca22c7e40a120370b1ca5\",\"versionType\":\"git\",\"status\":\"affected\"},{\"version\":\"1e1d9d6f119c55c05e8ea78ed3e49046690abffd\",\"lessThan\":\"624902eab7abcb8731b333ec73f206d38d839cd8\",\"versionType\":\"git\",\"status\":\"affected\"},{\"version\":\"1e1d9d6f119c55c05e8ea78ed3e49046690abffd\",\"lessThan\":\"b6c620dc43ccb4e802894e54b651cf81495e9598\",\"versionType\":\"git\",\"status\":\"affected\"}]},{\"vendor\":\"Linux\",\"product\":\"Linux\",\"defaultStatus\":\"affected\",\"programFiles\":[\"net/mptcp/protocol.c\"],\"repo\":\"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git\",\"versions\":[{\"version\":\"5.15\",\"status\":\"affected\"},{\"version\":\"0\",\"lessThan\":\"5.15\",\"versionType\":\"semver\",\"status\":\"unaffected\"},{\"version\":\"5.15.149\",\"lessThanOrEqual\":\"5.15.*\",\"versionType\":\"semver\",\"status\":\"unaffected\"},{\"version\":\"6.1.79\",\"lessThanOrEqual\":\"6.1.*\",\"versionType\":\"semver\",\"status\":\"unaffected\"},{\"version\":\"6.6.18\",\"lessThanOrEqual\":\"6.6.*\",\"versionType\":\"semver\",\"status\":\"unaffected\"},{\"version\":\"6.7.6\",\"lessThanOrEqual\":\"6.7.*\",\"versionType\":\"semver\",\"status\":\"unaffected\"},{\"version\":\"6.8\",\"lessThanOrEqual\":\"*\",\"versionType\":\"original_commit_for_fix\",\"status\":\"unaffected\"}]}]}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":5.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":3.6}],\"ssvcV203\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"ssvcData\":{\"timestamp\":\"2024-09-10T15:49:00.883183Z\",\"id\":\"CVE-2024-26826\",\"options\":[{\"exploitation\":\"none\"},{\"automatable\":\"no\"},{\"technicalImpact\":\"partial\"}],\"role\":\"CISA Coordinator\",\"version\":\"2.0.3\"}}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-noinfo\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"5.15\",\"versionEndExcluding\":\"5.15.149\",\"matchCriteriaId\":\"5DAC8D7B-7B93-476C-86C0-E4A247061C4E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"5.16\",\"versionEndExcluding\":\"6.1.79\",\"matchCriteriaId\":\"656E2F29-1779-4EFC-AA64-8F984E2885B1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"6.2\",\"versionEndExcluding\":\"6.6.18\",\"matchCriteriaId\":\"BD961E49-FEDA-47CF-BF23-4D2BD942B4E0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"6.7\",\"versionEndExcluding\":\"6.7.6\",\"matchCriteriaId\":\"C6D6A5C8-7308-42A9-8A72-ABF3DEA4BB82\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:6.8:rc1:*:*:*:*:*:*\",\"matchCriteriaId\":\"B9F4EA73-0894-400F-A490-3A397AB7A517\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:6.8:rc2:*:*:*:*:*:*\",\"matchCriteriaId\":\"056BD938-0A27-4569-B391-30578B309EE3\"}]}]}],\"references\":[{\"url\":\"https://git.kernel.org/stable/c/624902eab7abcb8731b333ec73f206d38d839cd8\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/6673d9f1c2cd984390550dbdf7d5ae07b20abbf8\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/6f95120f898b40d13fd441225ef511307853c9c2\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/b609c783c535493aa3fca22c7e40a120370b1ca5\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/b6c620dc43ccb4e802894e54b651cf81495e9598\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/624902eab7abcb8731b333ec73f206d38d839cd8\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/6673d9f1c2cd984390550dbdf7d5ae07b20abbf8\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/6f95120f898b40d13fd441225ef511307853c9c2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/b609c783c535493aa3fca22c7e40a120370b1ca5\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/b6c620dc43ccb4e802894e54b651cf81495e9598\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]}]}}",
"redhat_vex": {
"aggregate_severity": "Moderate",
"current_release_date": "2026-06-28T06:43:14+00:00",
"cve": "CVE-2024-26826",
"id": "CVE-2024-26826",
"initial_release_date": "2024-04-17T00:00:00+00:00",
"product_status:fixed": "929",
"product_status:known_affected": "22",
"product_status:known_not_affected": "51",
"source": "Red Hat CSAF VEX",
"status": "final",
"title": "kernel: mptcp: fix data re-injection from stale subflow",
"url": "https://security.access.redhat.com/data/csaf/v2/vex/2024/cve-2024-26826.json",
"version": "3"
},
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://git.kernel.org/stable/c/6f95120f898b40d13fd441225ef511307853c9c2\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://git.kernel.org/stable/c/6673d9f1c2cd984390550dbdf7d5ae07b20abbf8\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://git.kernel.org/stable/c/b609c783c535493aa3fca22c7e40a120370b1ca5\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://git.kernel.org/stable/c/624902eab7abcb8731b333ec73f206d38d839cd8\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://git.kernel.org/stable/c/b6c620dc43ccb4e802894e54b651cf81495e9598\", \"tags\": [\"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-02T00:14:13.531Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2024-26826\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-09-10T15:49:00.883183Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-09-11T12:42:17.040Z\"}}], \"cna\": {\"title\": \"mptcp: fix data re-injection from stale subflow\", \"affected\": [{\"repo\": \"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git\", \"vendor\": \"Linux\", \"product\": \"Linux\", \"versions\": [{\"status\": \"affected\", \"version\": \"1e1d9d6f119c55c05e8ea78ed3e49046690abffd\", \"lessThan\": \"6f95120f898b40d13fd441225ef511307853c9c2\", \"versionType\": \"git\"}, {\"status\": \"affected\", \"version\": \"1e1d9d6f119c55c05e8ea78ed3e49046690abffd\", \"lessThan\": \"6673d9f1c2cd984390550dbdf7d5ae07b20abbf8\", \"versionType\": \"git\"}, {\"status\": \"affected\", \"version\": \"1e1d9d6f119c55c05e8ea78ed3e49046690abffd\", \"lessThan\": \"b609c783c535493aa3fca22c7e40a120370b1ca5\", \"versionType\": \"git\"}, {\"status\": \"affected\", \"version\": \"1e1d9d6f119c55c05e8ea78ed3e49046690abffd\", \"lessThan\": \"624902eab7abcb8731b333ec73f206d38d839cd8\", \"versionType\": \"git\"}, {\"status\": \"affected\", \"version\": \"1e1d9d6f119c55c05e8ea78ed3e49046690abffd\", \"lessThan\": \"b6c620dc43ccb4e802894e54b651cf81495e9598\", \"versionType\": \"git\"}], \"programFiles\": [\"net/mptcp/protocol.c\"], \"defaultStatus\": \"unaffected\"}, {\"repo\": \"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git\", \"vendor\": \"Linux\", \"product\": \"Linux\", \"versions\": [{\"status\": \"affected\", \"version\": \"5.15\"}, {\"status\": \"unaffected\", \"version\": \"0\", \"lessThan\": \"5.15\", \"versionType\": \"semver\"}, {\"status\": \"unaffected\", \"version\": \"5.15.149\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"5.15.*\"}, {\"status\": \"unaffected\", \"version\": \"6.1.79\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"6.1.*\"}, {\"status\": \"unaffected\", \"version\": \"6.6.18\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"6.6.*\"}, {\"status\": \"unaffected\", \"version\": \"6.7.6\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"6.7.*\"}, {\"status\": \"unaffected\", \"version\": \"6.8\", \"versionType\": \"original_commit_for_fix\", \"lessThanOrEqual\": \"*\"}], \"programFiles\": [\"net/mptcp/protocol.c\"], \"defaultStatus\": \"affected\"}], \"references\": [{\"url\": \"https://git.kernel.org/stable/c/6f95120f898b40d13fd441225ef511307853c9c2\"}, {\"url\": \"https://git.kernel.org/stable/c/6673d9f1c2cd984390550dbdf7d5ae07b20abbf8\"}, {\"url\": \"https://git.kernel.org/stable/c/b609c783c535493aa3fca22c7e40a120370b1ca5\"}, {\"url\": \"https://git.kernel.org/stable/c/624902eab7abcb8731b333ec73f206d38d839cd8\"}, {\"url\": \"https://git.kernel.org/stable/c/b6c620dc43ccb4e802894e54b651cf81495e9598\"}], \"x_generator\": {\"engine\": \"bippy-1.2.0\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"In the Linux kernel, the following vulnerability has been resolved:\\n\\nmptcp: fix data re-injection from stale subflow\\n\\nWhen the MPTCP PM detects that a subflow is stale, all the packet\\nscheduler must re-inject all the mptcp-level unacked data. To avoid\\nacquiring unneeded locks, it first try to check if any unacked data\\nis present at all in the RTX queue, but such check is currently\\nbroken, as it uses TCP-specific helper on an MPTCP socket.\\n\\nFunnily enough fuzzers and static checkers are happy, as the accessed\\nmemory still belongs to the mptcp_sock struct, and even from a\\nfunctional perspective the recovery completed successfully, as\\nthe short-cut test always failed.\\n\\nA recent unrelated TCP change - commit d5fed5addb2b (\\\"tcp: reorganize\\ntcp_sock fast path variables\\\") - exposed the issue, as the tcp field\\nreorganization makes the mptcp code always skip the re-inection.\\n\\nFix the issue dropping the bogus call: we are on a slow path, the early\\noptimization proved once again to be evil.\"}], \"cpeApplicability\": [{\"nodes\": [{\"negate\": false, \"cpeMatch\": [{\"criteria\": \"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"5.15.149\", \"versionStartIncluding\": \"5.15\"}, {\"criteria\": \"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"6.1.79\", \"versionStartIncluding\": \"5.15\"}, {\"criteria\": \"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"6.6.18\", \"versionStartIncluding\": \"5.15\"}, {\"criteria\": \"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"6.7.6\", \"versionStartIncluding\": \"5.15\"}, {\"criteria\": \"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"6.8\", \"versionStartIncluding\": \"5.15\"}], \"operator\": \"OR\"}]}], \"providerMetadata\": {\"orgId\": \"416baaa9-dc9f-4396-8d5f-8c081fb06d67\", \"shortName\": \"Linux\", \"dateUpdated\": \"2026-05-11T20:04:53.431Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2024-26826\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2026-05-11T20:04:53.431Z\", \"dateReserved\": \"2024-02-19T14:20:24.181Z\", \"assignerOrgId\": \"416baaa9-dc9f-4396-8d5f-8c081fb06d67\", \"datePublished\": \"2024-04-17T09:43:51.741Z\", \"assignerShortName\": \"Linux\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
}
}
WID-SEC-W-2024-1905
Vulnerability from csaf_certbund - Published: 2024-08-21 22:00 - Updated: 2025-06-03 22:00Summary
IBM QRadar SIEM: Mehrere Schwachstellen
Severity
Hoch
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung: IBM QRadar Security Information and Event Management (SIEM) bietet Unterstützung bei der Erkennung und Priorisierung von Sicherheitsbedrohungen im Unternehmen.
Angriff: Ein entfernter, anonymer oder lokaler Angreifer kann mehrere Schwachstellen in IBM QRadar SIEM ausnutzen, um seine Privilegien zu erhöhen, beliebigen Code auszuführen, Daten zu manipulieren, vertrauliche Informationen offenzulegen, eine Man-in-the-Middle-Situation zu schaffen, Sicherheitsmaßnahmen zu umgehen oder eine Denial-of-Service-Situation zu schaffen.
Betroffene Betriebssysteme: - Linux
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM Business Automation Workflow 24.0.0
IBM / Business Automation Workflow
|
cpe:/a:ibm:business_automation_workflow:24.0.0
|
24.0.0 | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP9 IF02
IBM / QRadar SIEM
|
<7.5.0 UP9 IF02 |
References
7 references
{
"document": {
"aggregate_severity": {
"text": "hoch"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "IBM QRadar Security Information and Event Management (SIEM) bietet Unterst\u00fctzung bei der Erkennung und Priorisierung von Sicherheitsbedrohungen im Unternehmen.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter, anonymer oder lokaler Angreifer kann mehrere Schwachstellen in IBM QRadar SIEM ausnutzen, um seine Privilegien zu erh\u00f6hen, beliebigen Code auszuf\u00fchren, Daten zu manipulieren, vertrauliche Informationen offenzulegen, eine Man-in-the-Middle-Situation zu schaffen, Sicherheitsma\u00dfnahmen zu umgehen oder eine Denial-of-Service-Situation zu schaffen.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Linux",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2024-1905 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-1905.json"
},
{
"category": "self",
"summary": "WID-SEC-2024-1905 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-1905"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7166204 vom 2024-08-21",
"url": "https://www.ibm.com/support/pages/node/7166204"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-12606 vom 2024-09-03",
"url": "https://linux.oracle.com/errata/ELSA-2024-12606.html"
},
{
"category": "external",
"summary": "ORACLE OVMSA-2024-0011 vom 2024-09-04",
"url": "https://oss.oracle.com/pipermail/oraclevm-errata/2024-September/001099.html"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7167662 vom 2024-09-05",
"url": "https://www.ibm.com/support/pages/node/7167662"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:20163-1 vom 2025-06-04",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-June/021187.html"
}
],
"source_lang": "en-US",
"title": "IBM QRadar SIEM: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2025-06-03T22:00:00.000+00:00",
"generator": {
"date": "2025-06-04T12:07:51.721+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.3.12"
}
},
"id": "WID-SEC-W-2024-1905",
"initial_release_date": "2024-08-21T22:00:00.000+00:00",
"revision_history": [
{
"date": "2024-08-21T22:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2024-09-02T22:00:00.000+00:00",
"number": "2",
"summary": "Neue Updates von Oracle Linux aufgenommen"
},
{
"date": "2024-09-04T22:00:00.000+00:00",
"number": "3",
"summary": "Neue Updates von ORACLE aufgenommen"
},
{
"date": "2024-09-05T22:00:00.000+00:00",
"number": "4",
"summary": "Neue Updates von IBM aufgenommen"
},
{
"date": "2025-06-03T22:00:00.000+00:00",
"number": "5",
"summary": "Neue Updates von SUSE aufgenommen"
}
],
"status": "final",
"version": "5"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "24.0.0",
"product": {
"name": "IBM Business Automation Workflow 24.0.0",
"product_id": "T036570",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:business_automation_workflow:24.0.0"
}
}
}
],
"category": "product_name",
"name": "Business Automation Workflow"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c7.5.0 UP9 IF02",
"product": {
"name": "IBM QRadar SIEM \u003c7.5.0 UP9 IF02",
"product_id": "T037023"
}
},
{
"category": "product_version",
"name": "7.5.0 UP9 IF02",
"product": {
"name": "IBM QRadar SIEM 7.5.0 UP9 IF02",
"product_id": "T037023-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:qradar_siem:7.5.0_up9_if02"
}
}
}
],
"category": "product_name",
"name": "QRadar SIEM"
}
],
"category": "vendor",
"name": "IBM"
},
{
"branches": [
{
"category": "product_name",
"name": "Oracle Linux",
"product": {
"name": "Oracle Linux",
"product_id": "T004914",
"product_identification_helper": {
"cpe": "cpe:/o:oracle:linux:-"
}
}
}
],
"category": "vendor",
"name": "Oracle"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux",
"product": {
"name": "SUSE Linux",
"product_id": "T002207",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse_linux:-"
}
}
}
],
"category": "vendor",
"name": "SUSE"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-26555",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2020-26555"
},
{
"cve": "CVE-2021-46909",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2021-46909"
},
{
"cve": "CVE-2021-46972",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2021-46972"
},
{
"cve": "CVE-2021-47069",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2021-47069"
},
{
"cve": "CVE-2021-47073",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2021-47073"
},
{
"cve": "CVE-2021-47236",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2021-47236"
},
{
"cve": "CVE-2021-47310",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2021-47310"
},
{
"cve": "CVE-2021-47311",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2021-47311"
},
{
"cve": "CVE-2021-47353",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2021-47353"
},
{
"cve": "CVE-2021-47356",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2021-47356"
},
{
"cve": "CVE-2021-47456",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2021-47456"
},
{
"cve": "CVE-2021-47495",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2021-47495"
},
{
"cve": "CVE-2023-43788",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2023-43788"
},
{
"cve": "CVE-2023-43789",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2023-43789"
},
{
"cve": "CVE-2023-4692",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2023-4692"
},
{
"cve": "CVE-2023-4693",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2023-4693"
},
{
"cve": "CVE-2023-5090",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2023-5090"
},
{
"cve": "CVE-2023-52464",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2023-52464"
},
{
"cve": "CVE-2023-52560",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2023-52560"
},
{
"cve": "CVE-2023-52615",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2023-52615"
},
{
"cve": "CVE-2023-52626",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2023-52626"
},
{
"cve": "CVE-2023-52667",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2023-52667"
},
{
"cve": "CVE-2023-52669",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2023-52669"
},
{
"cve": "CVE-2023-52675",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2023-52675"
},
{
"cve": "CVE-2023-52686",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2023-52686"
},
{
"cve": "CVE-2023-52700",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2023-52700"
},
{
"cve": "CVE-2023-52703",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2023-52703"
},
{
"cve": "CVE-2023-52781",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2023-52781"
},
{
"cve": "CVE-2023-52813",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2023-52813"
},
{
"cve": "CVE-2023-52835",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2023-52835"
},
{
"cve": "CVE-2023-52877",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2023-52877"
},
{
"cve": "CVE-2023-52878",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2023-52878"
},
{
"cve": "CVE-2023-52881",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2023-52881"
},
{
"cve": "CVE-2023-7008",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2023-7008"
},
{
"cve": "CVE-2024-1048",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2024-1048"
},
{
"cve": "CVE-2024-22365",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2024-22365"
},
{
"cve": "CVE-2024-26583",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2024-26583"
},
{
"cve": "CVE-2024-26584",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2024-26584"
},
{
"cve": "CVE-2024-26585",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2024-26585"
},
{
"cve": "CVE-2024-26656",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2024-26656"
},
{
"cve": "CVE-2024-26675",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2024-26675"
},
{
"cve": "CVE-2024-26735",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2024-26735"
},
{
"cve": "CVE-2024-26759",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2024-26759"
},
{
"cve": "CVE-2024-26801",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2024-26801"
},
{
"cve": "CVE-2024-26804",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2024-26804"
},
{
"cve": "CVE-2024-26826",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2024-26826"
},
{
"cve": "CVE-2024-26859",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2024-26859"
},
{
"cve": "CVE-2024-26906",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2024-26906"
},
{
"cve": "CVE-2024-26907",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2024-26907"
},
{
"cve": "CVE-2024-26974",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2024-26974"
},
{
"cve": "CVE-2024-26982",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2024-26982"
},
{
"cve": "CVE-2024-27397",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2024-27397"
},
{
"cve": "CVE-2024-27410",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2024-27410"
},
{
"cve": "CVE-2024-34750",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2024-34750"
},
{
"cve": "CVE-2024-35789",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2024-35789"
},
{
"cve": "CVE-2024-35835",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2024-35835"
},
{
"cve": "CVE-2024-35838",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2024-35838"
},
{
"cve": "CVE-2024-35845",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2024-35845"
},
{
"cve": "CVE-2024-35852",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2024-35852"
},
{
"cve": "CVE-2024-35853",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2024-35853"
},
{
"cve": "CVE-2024-35854",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2024-35854"
},
{
"cve": "CVE-2024-35855",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2024-35855"
},
{
"cve": "CVE-2024-35888",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2024-35888"
},
{
"cve": "CVE-2024-35890",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2024-35890"
},
{
"cve": "CVE-2024-35958",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2024-35958"
},
{
"cve": "CVE-2024-35959",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2024-35959"
},
{
"cve": "CVE-2024-35960",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2024-35960"
},
{
"cve": "CVE-2024-36004",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2024-36004"
},
{
"cve": "CVE-2024-36007",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2024-36007"
},
{
"cve": "CVE-2024-5564",
"product_status": {
"known_affected": [
"T036570",
"T002207",
"T004914",
"T037023"
]
},
"release_date": "2024-08-21T22:00:00.000+00:00",
"title": "CVE-2024-5564"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…