← back
CVE-2022-22394

CVE-2022-22394

CVSS 7.5 HIGHEPSS 2.1%
Vexday Risk Score
21Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 7.5EPSS 2.1%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
21 Mar 2022Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
The IBM Spectrum Protect 8.1.14.000 server could allow a remote attacker to bypass security restrictions, caused by improper enforcement of access controls. By signing in, an attacker could exploit this vulnerability to bypass security and gain unauthorized administrator or node access to the vulnerable server.
CVSS:3.0/C:H/UI:N/I:H/AV:N/PR:L/AC:H/A:H/S:U/E:U/RL:O/RC:C
Affected products
IBM · Spectrum Protect Server

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://exchange.xforce.ibmcloud.com/vulnerabilities/222147https://www.ibm.com/support/pages/node/6564745