CVE-2024-49823

Summary

IBM Common Cryptographic Architecture 7.0.0 through 7.5.51 could allow an authenticated user to cause a denial of service in the Hardware Security Module (HSM) using a specially crafted sequence of valid requests.

Affected Software

VendorProductVersion RangeStatus
IBMCommon Cryptographic Architecture7.0.0 <= 7.5.51affected
IBM4769 Developers Toolkit7.0.0 <= 7.5.51affected

Weaknesses

  • CWE-787: CWE-787 Out-of-bounds Write

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References