CVE-2024-49823

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Mar 11, 2025

CWE ID 787

Summary

CVE-2024-49823 is a denial-of-service vulnerability affecting IBM Common Cryptographic Architecture versions 7.0.0 through 7.5.51. An authenticated user can trigger this issue by sending a specifically crafted sequence of valid requests to the Hardware Security Module (HSM). The vulnerability does not involve any unauthorized access or data disclosure, but it can cause the HSM to become unresponsive, leading to a denial-of-service condition. IBM has released patches to address this issue, and users are strongly encouraged to apply them to mitigate the risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/zrbRRf
https://www.cve.org/CVERecord?id=CVE-2024-49823
https://nvd.nist.gov/vuln/detail/CVE-2024-49823

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Russia-Aligned TAG-110 Targets Tajikistan with Macro-Enabled Word Documents

Measuring the US-China AI Gap

TerraStealerV2 and TerraLogger: Golden Chickens' New Malware Families Discovered

Know What Matters

For Customers

For Partners

CVE-2024-49823

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations