First published: Thu Apr 27 2023(Updated: )
IBM Runtime Environment, Java Technology Edition IBMJCEPlus and JSSE 8.0.7.0 through 8.0.7.11 components could expose sensitive information using a combination of flaws and configurations. IBM X-Force ID: 253188.
Credit: psirt@us.ibm.com
Affected Software | Affected Version | How to fix |
---|---|---|
Ibm Infosphere Information Server | =11.7 | |
IBM Java | >=8.0.7.0<8.0.7.15 | |
Ibm Websphere Application Server | >=8.5.0.0<8.5.5.23 | |
Ibm Websphere Application Server | ||
Ibm Websphere Application Server | =9.0.0.0 | |
IBM Cloud Pak for Business Automation | =1.1 | |
IBM Cloud Pak for Business Automation | <=V22.0.2 - V22.0.2-IF004 | |
IBM Cloud Pak for Business Automation | <=V21.0.3 - V21.0.3-IF020 | |
IBM Cloud Pak for Business Automation | <=V22.0.1 - V22.0.1-IF006 and later fixesV21.0.2 - V21.0.2-IF012 and later fixesV21.0.1 - V21.0.1-IF007 and later fixesV20.0.1 - V20.0.3 and later fixesV19.0.1 - V19.0.3 and later fixesV18.0.0 - V18.0.2 and later fixes |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this issue is CVE-2023-30441.
The affected software is IBM QRadar SIEM version 7.5.0 to 7.5.0 UP6.
The severity of CVE-2023-30441 is rated as high with a value of 7.5.
The vulnerability in IBM Runtime Environment could expose sensitive information using a combination of flaws and configurations.
To fix CVE-2023-30441, IBM recommends updating to a version of IBM QRadar SIEM that is not affected by this vulnerability.