Lucene search

IbmCVELIST:CVE-2022-22355

HistoryApr 05, 2022 - 4:45 p.m.

CVE-2022-22355

2022-04-0516:45:21

ibm

www.cve.org

ibm

mq appliance

denial of service

CVSS3

5.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

LOW

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:U/RL:O/RC:C

AI Score

5.5

Confidence

High

EPSS

0.001

Percentile

33.5%

JSON

IBM MQ Appliance 9.2 CD and 9.2 LTS are vulnerable to a denial of service in the Login component of the application which could allow an attacker to cause a drop in performance.

CNA Affected

[
  {
    "product": "MQ Appliance",
    "vendor": "IBM",
    "versions": [
      {
        "status": "affected",
        "version": "9.2 LTS"
      },
      {
        "status": "affected",
        "version": "9.2 CD"
      }
    ]
  }
]

References

exchange.xforce.ibmcloud.com/vulnerabilities/220486

www.ibm.com/support/pages/node/6564711

CVSS3

5.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

LOW

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:U/RL:O/RC:C

AI Score

5.5

Confidence

High

EPSS

0.001

Percentile

33.5%

JSON

Related for CVELIST:CVE-2022-22355