What is the severity of CVE-2024-49823?

CVE-2024-49823 has been categorized as a denial of service vulnerability affecting IBM CCA.

Who is affected by CVE-2024-49823?

IBM Common Cryptographic Architecture versions 7.0.0 through 7.5.51 are affected by CVE-2024-49823.

How do I fix CVE-2024-49823?

To address CVE-2024-49823, it is recommended to update IBM CCA to the latest version that resolves this vulnerability.

What impact does CVE-2024-49823 have on systems?

CVE-2024-49823 can lead to service disruptions affecting the availability of the Hardware Security Module (HSM) for authorized users.

Vulnerability/
CVE-2024-49823

medium

6.5

CWE

787

10/3/2025

11/3/2025

CVE-2024-49823: IBM Common Cryptographic Architecture denial of service

Q: What can an authenticated user do with CVE-2024-49823?

An authenticated user can exploit CVE-2024-49823 to cause denial of service in the Hardware Security Module (HSM) by sending a specially crafted sequence of requests.

First published: Mon Mar 10 2025(Updated: )

IBM CCA could allow an authenticated user to cause a denial of service in the Hardware Security Module (HSM) using a specially crafted sequence of valid requests.

Credit: psirt@us.ibm.com

Affected Software	Affected Version	How to fix
IBM Common Cryptographic Architecture (CCA)	>=7.0.0<=7.5.51
IBM Common Cryptographic Architecture (CCA) 7.x	<=7.0.0 - 7.5.51
IBM 4769 Developers Toolkit	<=7.0.0 - 7.5.51

Never miss a vulnerability like this again

Reference Links

https://www.ibm.com/support/pages/node/7185282 (Advisory)

Parent vulnerabilities

(Appears in the following advisories)

IBM-7185282

Frequently Asked Questions

What is the severity of CVE-2024-49823?
CVE-2024-49823 has been categorized as a denial of service vulnerability affecting IBM CCA.
Who is affected by CVE-2024-49823?
IBM Common Cryptographic Architecture versions 7.0.0 through 7.5.51 are affected by CVE-2024-49823.
What can an authenticated user do with CVE-2024-49823?
An authenticated user can exploit CVE-2024-49823 to cause denial of service in the Hardware Security Module (HSM) by sending a specially crafted sequence of requests.
How do I fix CVE-2024-49823?
To address CVE-2024-49823, it is recommended to update IBM CCA to the latest version that resolves this vulnerability.
What impact does CVE-2024-49823 have on systems?
CVE-2024-49823 can lead to service disruptions affecting the availability of the Hardware Security Module (HSM) for authorized users.

agent/references
agent/title
agent/weakness
agent/type
agent/guess-ai
agent/software-canonical-lookup
agent/first-publish-date
agent/description
agent/softwarecombine
collector/nvd-api
source/NVD
agent/author
agent/source
agent/severity
agent/event
agent/tags
collector/mitre-cve
source/MITRE
agent/last-modified-date
collector/ibm-support
source/IBM
agent/software-canonical-lookup-request
vendor/ibm
canonical/ibm common cryptographic architecture (cca)
canonical/ibm common cryptographic architecture (cca) 7.x
version/ibm common cryptographic architecture (cca) 7.x/7.0.0 - 7.5.51
canonical/ibm 4769 developers toolkit
version/ibm 4769 developers toolkit/7.0.0 - 7.5.51

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.