Aktuelle Version vom 3. November 2023, 12:18 Uhr

Source

https://nvd.nist.gov/vuln/detail/CVE-2023-21930

Description of this CVE

"This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet)"

Affected Applications

affected version = From which version onwards there is a need for action.
fixed version = Minimum version where the security vulnerability is fixed or not affected anymore.
not affected = This application is not affected and therefore there is no need for action.
all versions = Every single version is affected. A need for action is required regardless of the version

Application Name	Affected Version	Fixed Version
CarrierAPI	2.7.0	3.0.64
ComManager	1.2.10 or higher	1.2.14
DataGatewayServer V3 (DGS V3) alle Versionen 2.x.x sind ausgeschlossen	3.8.14 or higher	3.8.24
FileConverter	-	-
FileMoveService	-	-
GLSBoxService	-	-
HFMS (Tarifwerk)	1.7.0	1.8.16
HVS32AMAService	1.3.5 or higher	1.3.7
HVS32DBArchivierung	4.6.0	4.6.7
HVS32MonitoringService	1.4.10 or higher	1.4.12
HVS32MonitoringServiceLight	1.5.7 or higher	1.5.9
IRIS	1.0.0	1.0.20
Leitcode	-	-
ScaleService	2.2.0	2.2.5
SEM-Manager	1.0.0	1.5.9
SEM-Web	1.0.0	1.5.8
Verladefreigabe	2.2.0	2.2.5
WatchLog	-	-

@@ Zeile 1: / Zeile 1: @@
-= Quelle =
+= Source =
 https://nvd.nist.gov/vuln/detail/CVE-2023-21930
-= Beschreibung vom CVE =
+= Description of this CVE =
 "This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet)"
-= Betroffene Applikationen =
+= Affected Applications =
-''application name = Name der Applikation.''<br>
+''affected version = From which version onwards there is a need for action.''<br>
-''affected version = Für welche Versionssände Handlungsbedarf besteht.''<br>
+''fixed version = Minimum version where the security vulnerability is fixed or not affected anymore.''<br>
-''fixed version = Mindestversionsstand, in welcher die Sicherheitslücke behoben / nicht betroffen ist.''<br><br>
+''not affected = This application is not affected and therefore there is no need for action.<br>
-''not affected = Diese Applikation ist von der Sicherheitslücke nicht betroffen. Es besteht kein Handlungsbedarf.''<br><br>
+''all versions = Every single version is affected. A need for action is required regardless of the version''
 {| class="wikitable"
 |-
-! application name !! affected version !! fixed version
+! Application Name !! Affected Version !! Fixed Version
 |-
-| CarrierAPI || - || -
+| CarrierAPI || 2.7.0 || 3.0.64
 |-
-| ComManager || - || -
+| ComManager || 1.2.10 or higher
+| 1.2.14
 |-
-| DataGatewayServer V3 (DGS V3)<br>''alle Versionen 2.x.x sind ausgeschlossen'' || - || -
+| DataGatewayServer V3 (DGS V3)<br>''alle Versionen 2.x.x sind ausgeschlossen''|| 3.8.14 or higher
+| 3.8.24
 |-
 | FileConverter || - || -
@@ Zeile 26: / Zeile 29: @@
 | GLSBoxService || - || -
 |-
-| HFMS (Tarifwerk) || - || -
+| HFMS (Tarifwerk) || 1.7.0 || 1.8.16
 |-
-| HVS32AMAService || - || -
+| HVS32AMAService || 1.3.5 or higher
+| 1.3.7
 |-
-| HVS32DBArchivierung || - || -
+| HVS32DBArchivierung || 4.6.0 || 4.6.7
 |-
-| HVS32MonitoringService || - || -
+| HVS32MonitoringService || 1.4.10 or higher
+| 1.4.12
 |-
-| HVS32MonitoringServiceLight || - || -
+| HVS32MonitoringServiceLight || 1.5.7 or higher
+| 1.5.9
 |-
-| IRIS || - || -
+| IRIS || 1.0.0 || 1.0.20
 |-
 | Leitcode || - || -
 |-
-| ScaleService || - || -
+| ScaleService || 2.2.0 || 2.2.5
 |-
-| SEM-Manager || - || -
+| SEM-Manager || 1.0.0 || 1.5.9
 |-
-| SEM-Web || - || -
+| SEM-Web || 1.0.0 || 1.5.8
 |-
-| Verladefreigabe || - || -
+| Verladefreigabe || 2.2.0 || 2.2.5
 |-
 | WatchLog || - || -
 |}

CVE-2023-21930: Unterschied zwischen den Versionen

Aktuelle Version vom 3. November 2023, 12:18 Uhr

Source

Description of this CVE

Affected Applications