Lucene search

IbmCVE-2022-35283

HistoryJul 14, 2022 - 5:15 p.m.

CVE-2022-35283

2022-07-1417:15:08

ibm

web.nvd.nist.gov

ibm

security

verify

information

queue

10.0.2

denial of service

http request

nvd

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

AI Score

6.2

Confidence

High

EPSS

0.001

Percentile

32.8%

JSON

IBM Security Verify Information Queue 10.0.2 could allow an authenticated user to cause a denial of service with a specially crafted HTTP request.

Affected configurations

Nvd

Vulners

Node

ibmsecurity_verify_information_queueMatch10.0.2

AND

linuxlinux_kernelMatch-

VendorProductVersionCPE
ibmsecurity_verify_information_queue10.0.2cpe:2.3:a:ibm:security_verify_information_queue:10.0.2:*:*:*:*:*:*:*
linuxlinux_kernel-cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
ibm	security_verify_information_queue	10.0.2	cpe:2.3:a:ibm:security_verify_information_queue:10.0.2:::::::*
linux	linux_kernel	-	cpe:2.3:o:linux:linux_kernel:-:::::::*

CNA Affected

[
  {
    "product": "Security Verify Information Queue",
    "vendor": "IBM",
    "versions": [
      {
        "status": "affected",
        "version": "10.0.2"
      }
    ]
  }
]

References

exchange.xforce.ibmcloud.com/vulnerabilities/230810

www.ibm.com/support/pages/node/6603445

Social References

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

AI Score

6.2

Confidence

High

EPSS

0.001

Percentile

32.8%

JSON

Related for CVE-2022-35283