Lucene search
HistoryJul 26, 2022 - 3:15 p.m.
CVE-2022-35639
ibm
sterling partner engagement manager
server unresponsive
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS
0.001
Percentile
35.4%
IBM Sterling Partner Engagement Manager 6.1, 6.2, and Cloud 22.2 do not limit the length of a connection which could cause the server to become unresponsive. IBM X-Force ID: 230932.
Affected configurations
Node
ibmsterling_partner_engagement_managerRange6.1–6.1.2.5standard
ORibmsterling_partner_engagement_managerRange6.2–6.2.0.3standard
ORibmsterling_partner_engagement_manager_on_cloudMatch22.2
linuxlinux_kernelMatch-
| Vendor | Product | Version | CPE |
|---|---|---|---|
| ibm | sterling_partner_engagement_manager | * | cpe:2.3:a:ibm:sterling_partner_engagement_manager:*:*:*:*:standard:*:*:* |
| ibm | sterling_partner_engagement_manager_on_cloud | 22.2 | cpe:2.3:a:ibm:sterling_partner_engagement_manager_on_cloud:22.2:*:*:*:*:*:*:* |
| linux | linux_kernel | - | cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:* |
Related
prion
prion
Code injection
2022-07-26 15:15:00
cvelist
cvelist
CVE-2022-35639
2022-07-26 14:25:39
ibm
ibm
cve
cve
CVE-2022-35639
2022-07-26 15:15:10
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS
0.001
Percentile
35.4%
Related for NVD:CVE-2022-35639