Language:
Severity: Critical
ID: 191754
File Name: ibm_doors_7124058.nasl
Version: 1.2
Type: local
Agent: windows
Family: Windows
Published: 3/8/2024
Updated: 3/12/2024
Supported Sensors: Nessus Agent, Nessus
Risk Factor: Critical
Score: 9.2
Risk Factor: High
Base Score: 7.5
Temporal Score: 6.5
Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P
CVSS Score Source: CVE-2022-32532
Risk Factor: Critical
Base Score: 9.8
Temporal Score: 9.4
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Temporal Vector: CVSS:3.0/E:H/RL:O/RC:C
CVSS Score Source: CVE-2023-46604
CPE: cpe:/a:ibm:rational_doors
Required KB Items: SMB/Registry/Enumerated, installed_sw/IBM DOORS
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 2/28/2024
Vulnerability Publication Date: 11/14/2018
CISA Known Exploited Vulnerability Due Dates: 3/17/2022, 10/31/2023, 11/23/2023
Core Impact
Metasploit (Apache ActiveMQ Unauthenticated Remote Code Execution)
CVE: CVE-2018-17960, CVE-2019-10072, CVE-2020-11996, CVE-2020-13934, CVE-2020-13943, CVE-2020-14338, CVE-2020-17527, CVE-2020-1935, CVE-2020-1938, CVE-2020-27193, CVE-2020-36518, CVE-2020-9281, CVE-2021-23926, CVE-2021-25122, CVE-2021-26271, CVE-2021-27568, CVE-2021-29425, CVE-2021-33037, CVE-2021-33829, CVE-2021-37533, CVE-2021-37695, CVE-2021-41079, CVE-2021-41164, CVE-2021-41165, CVE-2021-43980, CVE-2021-46877, CVE-2022-24728, CVE-2022-24729, CVE-2022-25762, CVE-2022-29885, CVE-2022-32532, CVE-2022-36944, CVE-2022-42003, CVE-2022-42004, CVE-2022-42252, CVE-2022-43551, CVE-2022-43552, CVE-2023-1370, CVE-2023-23914, CVE-2023-23915, CVE-2023-23916, CVE-2023-24998, CVE-2023-27533, CVE-2023-27534, CVE-2023-27535, CVE-2023-27536, CVE-2023-27537, CVE-2023-27538, CVE-2023-28319, CVE-2023-28320, CVE-2023-28321, CVE-2023-28322, CVE-2023-28525, CVE-2023-28949, CVE-2023-32001, CVE-2023-34453, CVE-2023-34454, CVE-2023-34455, CVE-2023-35116, CVE-2023-38039, CVE-2023-38545, CVE-2023-38546, CVE-2023-41080, CVE-2023-42795, CVE-2023-43642, CVE-2023-44487, CVE-2023-45648, CVE-2023-46604, CVE-2023-50305, CVE-2023-50306, CVE-2024-21733
IAVA: 2024-A-0124