Lucene search
IbmCVELIST:CVE-2022-22365HistoryMay 20, 2022 - 4:20 p.m.
CVE-2022-22365
2022-05-2016:20:19
ibm
www.cve.org
3
ibm
websphere
ssl spoofing
ajax proxy
CVSS3
5.6
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L/E:U/RL:O/RC:C
EPSS
0.001
Percentile
24.2%
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0, with the Ajax Proxy Web Application (AjaxProxy.war) deployed, is vulnerable to spoofing by allowing a man-in-the-middle attacker to spoof SSL server hostnames. IBM X-Force ID: 220904.
CNA Affected
[
{
"product": "WebSphere Application Server",
"vendor": "IBM",
"versions": [
{
"status": "affected",
"version": "7.0"
},
{
"status": "affected",
"version": "8.0"
},
{
"status": "affected",
"version": "8.5"
},
{
"status": "affected",
"version": "9.0"
}
]
}
]Related
prion
prion
Spoofing
2022-05-20 17:15:00
ibm
ibm
cve
cve
CVE-2022-22365
2022-05-20 17:15:07
nessus
nessus
IBM WebSphere Application Server Spoofing (6587947)
2022-06-16 00:00:00
cnvd
cnvd
IBM WebSphere Application Server has an unspecified vulnerability
2022-05-24 00:00:00
nvd
nvd
CVE-2022-22365
2022-05-20 17:15:07
CVSS3
5.6
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L/E:U/RL:O/RC:C
EPSS
0.001
Percentile
24.2%
Related for CVELIST:CVE-2022-22365