CVE-2022-22454
CVE-2022-22454
Vexday Risk Score
13Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 5.9EPSS 0.3%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
10 May 2022Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
IBM InfoSphere Information Server 11.7 could allow a locally authenticated attacker to execute arbitrary commands on the system by sending a specially crafted request.
CVSS:3.0/AC:L/AV:L/S:U/PR:N/I:L/C:L/UI:N/A:L/RC:C/E:U/RL:O
Affected products
IBM · InfoSphere Information Server