Lucene search
IbmCVELIST:CVE-2022-22497HistoryMay 24, 2022 - 9:40 p.m.
CVE-2022-22497
2022-05-2421:40:09
ibm
www.cve.org
1
ibm aspera
faspex
unauthorized access
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C
AI Score
7.3
Confidence
High
EPSS
0.001
Percentile
43.3%
IBM Aspera Faspex 4.4.1 and 5.0.0 could allow unauthorized access due to an incorrectly computed security token. IBM X-Force ID: 226951.
CNA Affected
[
{
"product": "Aspera Faspex",
"vendor": "IBM",
"versions": [
{
"status": "affected",
"version": "4.4.1"
},
{
"status": "affected",
"version": "5.0.0"
}
]
}
]Related
prion
prion
Code injection
2022-05-24 22:15:00
cve
cve
CVE-2022-22497
2022-05-24 22:15:10
nvd
nvd
CVE-2022-22497
2022-05-24 22:15:10
ibm
ibm
cnvd
cnvd
IBM Aspera Access Control Error Vulnerability
2022-05-26 00:00:00
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C
AI Score
7.3
Confidence
High
EPSS
0.001
Percentile
43.3%
Related for CVELIST:CVE-2022-22497