CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:N
EPSS
Percentile
9.0%
Security improvements were made to the Trusteer Mobile SDKs for iOS and Android. No code changes are required to take advantage of the improvements, but mobile application creators must rebuild using the latest SDK version and redeploy their mobile apps to take advantage of these improvements.
CVEID:CVE-2022-42443
**DESCRIPTION:**An undisclosed issue in Trusteer agents may allow uploading of files.
CVSS Base score: 2.2
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/238535 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:N)
Affected Product(s) | Version(s) |
---|---|
Trusteer iOS SDK for mobile | All prior to 5.7 |
Trusteer Android SDK for mobile | All prior to 5.7 |
IBM encourages customers to rebuild their mobile applications with the latest SDK promptly.
Affected Product(s) | Fixed Version | Fix |
---|---|---|
Trusteer iOS SDK for mobile | 5.7 and later | To download the latest version of Trusteer Mobile SDK, go to the customer portal. The URL is: <https://trusteersupport.force.com/> |
Trusteer Android SDK for mobile | 5.7 and later | To download the latest version of Trusteer Mobile SDK, go to the customer portal. The URL is: <https://trusteersupport.force.com/> |
None
Vendor | Product | Version | CPE |
---|---|---|---|
ibm | security_trusteer_pinpoint_detect | 5.7 | cpe:2.3:a:ibm:security_trusteer_pinpoint_detect:5.7:*:*:*:*:*:*:* |
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:N
EPSS
Percentile
9.0%