CVE-2024-41766

Summary

IBM Engineering Lifecycle Optimization - Publishing 7.0.2 and 7.0.3 could allow a remote attacker to cause a denial of service using a complex regular expression.

Affected Software

VendorProductVersion RangeStatus
IBMEngineering Lifecycle Optimization Publishing7.0.2, 7.0.3affected

Weaknesses

  • CWE-1333: CWE-1333 Inefficient Regular Expression Complexity

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

References