Buffer Overflow Vulnerability in Connect:Express for UNIX Could Lead to Denial of Service

CVE-2023-32331

7.5HIGH

Key Information

Vendor
IBM
Status
Sterling Connect:express For Unix
Vendor
CVE Published:
4 March 2024

Badges

đź“° News Worthy

Summary

IBM Connect:Express for UNIX 1.5.0 is vulnerable to a buffer overflow that could allow a remote attacker to cause a denial of service through its browser UI. IBM X-Force ID: 254979.

Affected Version(s)

Sterling Connect:Express for UNIX = 1.5.0

News Articles

favicon imageprophaze.com

CVE-2023-32331 : IBM STERLING CONNECT EXPRESS 1.5.0 ON UNIX MEMORY CORRUPTION - Cloud WAF

CVE-2023-32331 : IBM Connect:Express for UNIX 1.5.0 is vulnerable to a buffer overflow that could allow a remote attacker to cause a denial of service through its browser UI. IBM X-Force ID: 254979.

10 months ago

Refferences

https://www.ibm.com/support/pages/node/7011443
vendor-advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/254979
vdb-entry

CVSS V3.1

Score:
7.5
Severity:
HIGH
Confidentiality:
None
Integrity:
None
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • First article discovered by prophaze.com

  • Vulnerability published

  • Vulnerability Reserved

Collectors

NVD DatabaseMitre Database1 News Article(s)
.