First published: Wed Jun 14 2023(Updated: )
Allocation of Resources Without Limits or Throttling vulnerability in Apache Software Foundation Apache Struts.This issue affects Apache Struts: through 2.5.30, through 6.1.2. Upgrade to Struts 2.5.31 or 6.1.2.1 or greater
Credit: security@apache.org
Affected Software | Affected Version | How to fix |
---|---|---|
IBM QRadar SIEM | <=7.5.0 - 7.5.0 UP6 | |
Apache Struts | <2.5.31 | |
Apache Struts | >=6.0.0<6.1.2.1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID is CVE-2023-34396.
The severity of CVE-2023-34396 is high with a severity value of 7.5.
The vulnerability affects IBM QRadar SIEM version 7.5.0 - 7.5.0 UP6.
The vulnerability can be exploited by a remote attacker to cause a denial of service condition.
You can find more information about CVE-2023-34396 at the following references: [Reference 1](https://exchange.xforce.ibmcloud.com/vulnerabilities/257946), [Reference 2](https://www.ibm.com/support/pages/node/7049133).