Lucene search

PRIOn knowledge basePRION:CVE-2022-38712

HistoryNov 03, 2022 - 8:15 p.m.

Spoofing

2022-11-0320:15:00

PRIOn knowledge base

www.prio-n.com

ibm

websphere

application server

soapaction

spoofing

vulnerability

x-force

nvd

5.7 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

36.8%

JSON

“IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 Web services could allow a man-in-the-middle attacker to conduct SOAPAction spoofing to execute unwanted or unauthorized operations. IBM X-Force ID: 234762.”

CPENameOperatorVersion
websphere_application_serverge7.0.0.0
websphere_application_serverlt7.0.0.45
websphere_application_serverge8.0.0.0
websphere_application_serverlt8.0.0.15
websphere_application_serverge8.5.0.0
websphere_application_serverlt8.5.5.23
websphere_application_serverge9.0.0.0
websphere_application_serverlt9.0.5.14

Name	Operator	Version
websphere_application_server	ge	7.0.0.0
websphere_application_server	lt	7.0.0.45
websphere_application_server	ge	8.0.0.0
websphere_application_server	lt	8.0.0.15
websphere_application_server	ge	8.5.0.0
websphere_application_server	lt	8.5.5.23
websphere_application_server	ge	9.0.0.0
websphere_application_server	lt	9.0.5.14

References

www.ibm.com/support/pages/node/6829907