CVE-2023-35895 | IBM Informix JDBC 4.10/4.50 JNDI os command injection (XFDB-259116)

Posted by Angelo Barbosa | Dec 20, 2023 | CVE

A vulnerability was found in IBM Informix JDBC 4.10/4.50. It has been declared as critical. This vulnerability affects unknown code of the component JNDI Handler. The manipulation leads to os command injection.

This vulnerability was named CVE-2023-35895. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-35895 | IBM Informix JDBC 4.10/4.50 JNDI os command injection (XFDB-259116)

Related Posts

CVE-2024-2500 | ColorMag Plugin up to 3.1.6 on WordPress Display Name cross site scripting

CVE-2023-47143 | IBM Tivoli Application Dependency Discovery Manager up to 7.3.0.10 http headers for scripting syntax (XFDB-270270)

CVE-2024-42785 | Kashipara Music Management System 1.0 index.php id sql injection

CVE-2024-46676 | Linux Kernel up to 6.10.7 pn533 nfc_start_poll divide by zero