3597442 - CVE-2023-41993 vulnerability - no impact on SAP IQ

Symptom

Vulnerabilities tools are reporting CVE-2023-41993 for the following files from

<IQ installation directory>/jre/lib/rt.jar
<IQ installation directory>/Shared/SAPJRE-<version>_<32 or 64>BIT/rt.jar

According to National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2023-41993
in "Known Affected Software Configurations", the problem JRE version is 1.8.0_401.

Configuration 4 ( hide )
cpe:2.3:a:oracle:graalvm:20.3.13:*:*:*:enterprise:*:*:*
Show Matching CPE(s)
cpe:2.3:a:oracle:graalvm:21.3.9:*:*:*:enterprise:*:*:*
Show Matching CPE(s)
cpe:2.3:a:oracle:jdk:1.8.0:update401:*:*:*:*:*:*
Show Matching CPE(s)
cpe:2.3:a:oracle:jre:1.8.0:update401:*:*:*:*:*:*
Hide Matching CPE(s)
cpe:2.3:a:oracle:jre:1.8.0:update401:*:*:enterprise_performance_pack:*:*:*

Environment

SAP IQ 16.0
SAP IQ 16.1

Product

SAP IQ 16.0 ; SAP IQ 16.1

Keywords

CVE-2023-41993, National Vulnerability Database, , KBA , BC-SYB-IQ , Sybase IQ , Problem

About this page

This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).

Search for additional results

Visit SAP Support Portal's SAP Notes and KBA Search.