CVE-2023-26281

IBM HTTP Server 8.5 used by IBM WebSphere Application Server could allow a remote user to cause a denial of service using a specially crafted URL. IBM X-Force ID: 248296.
References
Configurations

Configuration 1 (hide)

AND
cpe:2.3:a:ibm:http_server:8.5.0.0:*:*:*:*:*:*:*
OR cpe:2.3:o:hp:hp-ux:-:*:*:*:*:*:*:*
cpe:2.3:o:ibm:aix:-:*:*:*:*:*:*:*
cpe:2.3:o:ibm:z\/os:-:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
cpe:2.3:o:oracle:solaris:-:*:*:*:*:*:*:*

History

07 Nov 2023, 04:09

Type Values Removed Values Added
Summary IBM HTTP Server 8.5 used by IBM WebSphere Application Server could allow a remote user to cause a denial of service using a specially crafted URL. IBM X-Force ID: 248296. IBM HTTP Server 8.5 used by IBM WebSphere Application Server could allow a remote user to cause a denial of service using a specially crafted URL. IBM X-Force ID: 248296.

10 Mar 2023, 02:46

Type Values Removed Values Added
CPE cpe:2.3:o:ibm:aix:-:*:*:*:*:*:*:*
cpe:2.3:a:ibm:http_server:8.5.0.0:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
cpe:2.3:o:hp:hp-ux:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
cpe:2.3:o:ibm:z\/os:-:*:*:*:*:*:*:*
cpe:2.3:o:oracle:solaris:-:*:*:*:*:*:*:*
First Time Oracle solaris
Hp hp-ux
Ibm
Ibm aix
Linux
Linux linux Kernel
Microsoft windows
Microsoft
Ibm z\/os
Oracle
Ibm http Server
Hp
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 7.5
References (MISC) https://www.ibm.com/support/pages/node/6958522 - (MISC) https://www.ibm.com/support/pages/node/6958522 - Patch, Vendor Advisory
References (MISC) https://exchange.xforce.ibmcloud.com/vulnerabilities/248296 - (MISC) https://exchange.xforce.ibmcloud.com/vulnerabilities/248296 - VDB Entry, Vendor Advisory

01 Mar 2023, 08:15

Type Values Removed Values Added
New CVE

Information

Published : 2023-03-01 08:15

Updated : 2023-12-10 14:48


NVD link : CVE-2023-26281

Mitre link : CVE-2023-26281

CVE.ORG link : CVE-2023-26281


JSON object : View

Products Affected

hp

  • hp-ux

ibm

  • z\/os
  • http_server
  • aix

linux

  • linux_kernel

microsoft

  • windows

oracle

  • solaris
CWE
CWE-20

Improper Input Validation