Lucene search
IbmCVELIST:CVE-2022-22475HistoryMay 17, 2022 - 4:25 p.m.
CVE-2022-22475
2022-05-1716:25:23
ibm
www.cve.org
10
ibm
websphere
application server
liberty
open liberty
identity spoofing
CVSS3
5
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L/E:U/RL:O/RC:C
AI Score
6.3
Confidence
High
EPSS
0.001
Percentile
19.6%
IBM WebSphere Application Server Liberty and Open Liberty 17.0.0.3 through 22.0.0.5 are vulnerable to identity spoofing by an authenticated user. IBM X-Force ID: 225603.
CNA Affected
[
{
"product": "WebSphere Application Server Liberty",
"vendor": "IBM",
"versions": [
{
"status": "affected",
"version": "17.0.0.3"
},
{
"status": "affected",
"version": "22.0.0.5"
}
]
}
]Related
ibm
ibm
nessus
nessus
cnvd
cnvd
cve
cve
CVE-2022-22475
2022-05-17 17:15:08
prion
prion
Design/Logic Flaw
2022-05-17 17:15:00
osv
osv
CVE-2022-22475
2022-05-17 17:15:08
nvd
nvd
CVE-2022-22475
2022-05-17 17:15:08
CVSS3
5
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L/E:U/RL:O/RC:C
AI Score
6.3
Confidence
High
EPSS
0.001
Percentile
19.6%
Related for CVELIST:CVE-2022-22475