← Volver a CVEs
CVE-2023-49886
CRITICAL9.8
Descripcion
IBM Standards Processing Engine 10.0.1.10 could allow a remote attacker to execute arbitrary code on the system, caused by an unsafe java deserialization. By sending specially crafted input, an attacker could exploit this vulnerability to execute arbitrary code on the system.
Detalles CVE
Puntuacion CVSS v3.19.8
SeveridadCRITICAL
Vector CVSSCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vector de ataqueNETWORK
ComplejidadLOW
Privilegios requeridosNONE
Interaccion usuarioNONE
Publicado10/6/2025
Ultima modificacion10/16/2025
Fuentenvd
Avistamientos honeypot0
Productos afectados
ibm:transformation_extender_advanced
Debilidades (CWE)
CWE-502
Referencias
https://www.ibm.com/support/pages/node/7247179(psirt@us.ibm.com)
Correlaciones IOC
Sin correlaciones registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.