Lucene search
IbmCVE-2022-38714HistoryFeb 12, 2024 - 6:15 p.m.
CVE-2022-38714
2024-02-1218:15:08
ibm
web.nvd.nist.gov
41
2
ibm
datastage
cloud pak
data
security
vulnerability
cve-2022-38714
x-force
nvd
CVSS3
4.9
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
AI Score
4.6
Confidence
High
EPSS
0
Percentile
9.0%
IBM DataStage on Cloud Pak for Data 4.0.6 to 4.5.2 stores sensitive credential information that can be read by a privileged user. IBM X-Force ID: 235060.
Affected configurations
Node
ibmdb2_on_cloud_pak_for_dataRange4.0.6–4.5.2
| Vendor | Product | Version | CPE |
|---|---|---|---|
| ibm | db2_on_cloud_pak_for_data | * | cpe:2.3:a:ibm:db2_on_cloud_pak_for_data:*:*:*:*:*:*:*:* |
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "DataStage on Cloud Pak for Data",
"vendor": "IBM",
"versions": [
{
"lessThanOrEqual": "4.5.2",
"status": "affected",
"version": "4.0.6",
"versionType": "semver"
}
]
}
]Social References
More
Related
vulnrichment
vulnrichment
CVE-2022-38714 IBM DataStage on Cloud Pak for Data information disclosure
2024-02-12 17:41:24
nvd
nvd
CVE-2022-38714
2024-02-12 18:15:08
ibm
ibm
cvelist
cvelist
CVE-2022-38714 IBM DataStage on Cloud Pak for Data information disclosure
2024-02-12 17:41:24
prion
prion
Design/Logic Flaw
2024-02-12 18:15:00
CVSS3
4.9
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
AI Score
4.6
Confidence
High
EPSS
0
Percentile
9.0%
Related for CVE-2022-38714