Lucene search

IbmCVELIST:CVE-2022-22316

HistoryMar 23, 2022 - 4:20 p.m.

CVE-2022-22316

2022-03-2316:20:12

ibm

www.cve.org

ibm mq appliance

denial of service

authorization checks

CVSS3

5.3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C

AI Score

6.3

Confidence

High

EPSS

0.001

Percentile

32.8%

JSON

IBM MQ Appliance 9.2 CD and 9.2 LTS could allow an authenticated and authorized user to cause a denial of service due to incorrectly configured authorization checks. IBM X-Force ID: 218276.

CNA Affected

[
  {
    "product": "MQ Appliance",
    "vendor": "IBM",
    "versions": [
      {
        "status": "affected",
        "version": "9.2 LTS"
      },
      {
        "status": "affected",
        "version": "9.2 CD"
      }
    ]
  }
]

References

exchange.xforce.ibmcloud.com/vulnerabilities/218276

www.ibm.com/support/pages/node/6560040

CVSS3

5.3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C

AI Score

6.3

Confidence

High

EPSS

0.001

Percentile

32.8%

JSON

Related for CVELIST:CVE-2022-22316