Lucene search
IbmCVE-2022-22375HistoryOct 17, 2023 - 2:15 a.m.
CVE-2022-22375
2023-10-1702:15:10
CWE-434
ibm
web.nvd.nist.gov
44
ibm
security
verify
privilege
on-premises
11.5
remote code execution
cve-2022-22375
ibm x-force
221681
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
8.4
Confidence
High
EPSS
0.001
Percentile
30.2%
IBM Security Verify Privilege On-Premises 11.5 could allow a remote authenticated attacker to execute arbitrary commands on the system by sending a specially crafted request. IBM X-Force ID: 221681.
Affected configurations
Node
ibmsecurity_verify_privilege_on-premisesRange<11.5
applemacosMatch-
ORmicrosoftwindowsMatch-
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "Security Verify Privilege",
"vendor": "IBM",
"versions": [
{
"status": "affected",
"version": "11.5"
}
]
}
]Related
prion
prion
Design/Logic Flaw
2023-10-17 02:15:00
cvelist
cvelist
CVE-2022-22375 IBM Security Verify Privilege command execution
2023-10-17 01:21:58
nvd
nvd
CVE-2022-22375
2023-10-17 02:15:10
cnvd
cnvd
IBM Security Verify Privilege Manager Arbitrary File Upload Vulnerability
2023-10-19 00:00:00
vulnrichment
vulnrichment
CVE-2022-22375 IBM Security Verify Privilege command execution
2023-10-17 01:21:58
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
8.4
Confidence
High
EPSS
0.001
Percentile
30.2%
Related for CVE-2022-22375