Lucene search
HistoryFeb 12, 2023 - 4:15 a.m.
CVE-2022-42444
ibm
app connect enterprise
buffer overflow
vulnerability
remote user
crash
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
AI Score
5.8
Confidence
High
EPSS
0.001
Percentile
44.3%
IBM App Connect Enterprise 11.0.0.8 through 11.0.0.19 and 12.0.1.0 through 12.0.5.0 is vulnerable to a buffer overflow. A remote privileged user could overflow a buffer and cause the application to crash. IBM X-Force ID: 238538.
Affected configurations
Node
ibmapp_connect_enterpriseRange11.0.0.8–11.0.0.19
ORibmapp_connect_enterpriseRange12.0.1.0–12.0.5.0
ibmaixMatch-
ORlinuxlinux_kernelMatch-
ORmicrosoftwindowsMatch-
| Vendor | Product | Version | CPE |
|---|---|---|---|
| ibm | app_connect_enterprise | * | cpe:2.3:a:ibm:app_connect_enterprise:*:*:*:*:*:*:*:* |
| ibm | aix | - | cpe:2.3:o:ibm:aix:-:*:*:*:*:*:*:* |
| linux | linux_kernel | - | cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:* |
| microsoft | windows | - | cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:* |
Related
ibm
ibm
prion
prion
Buffer overflow
2023-02-12 04:15:00
cvelist
cvelist
CVE-2022-42444 IBM App Connect Enterprise denial of service
2023-02-06 20:38:25
cve
cve
CVE-2022-42444
2023-02-12 04:15:15
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
AI Score
5.8
Confidence
High
EPSS
0.001
Percentile
44.3%
Related for NVD:CVE-2022-42444