CVE-2024-22361
Published Feb 10, 2024
Last updated 9 months ago
Overview
- Description
- IBM Semeru Runtime 8.0.302.0 through 8.0.392.0, 11.0.12.0 through 11.0.21.0, 17.0.1.0 - 17.0.9.0, and 21.0.1.0 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 281222.
- Source
- psirt@us.ibm.com
- NVD status
- Analyzed
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 3.1
- Type
- Primary
- Base score
- 7.5
- Impact score
- 3.6
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
- Severity
- HIGH
Weaknesses
- psirt@us.ibm.com
- CWE-327
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:ibm:semeru_runtime:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "BA4B8B66-3303-490C-9D3B-22188FD257D0",
"versionEndExcluding": "8.0.402.0",
"versionStartIncluding": "8.0.302.0"
},
{
"criteria": "cpe:2.3:a:ibm:semeru_runtime:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "53915283-E1D3-4F1A-8D29-66CCD1866D73",
"versionEndExcluding": "11.0.22.0",
"versionStartIncluding": "11.0.12.0"
},
{
"criteria": "cpe:2.3:a:ibm:semeru_runtime:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E533B3E9-400B-41D8-9637-D4B6C6F6D3D7",
"versionEndExcluding": "17.0.10.0",
"versionStartIncluding": "17.0.1.0"
},
{
"criteria": "cpe:2.3:a:ibm:semeru_runtime:21.0.1.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5D5749EB-5EEB-44C2-AA0F-51A311F6E587"
}
],
"operator": "OR"
}
]
}
]