CVE-2022-22426
CVE-2022-22426
Vexday Risk Score
8Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS 2.9EPSS 0.2%KEV nãoPoC —Nuclei —Metasploit —Patch —
Ciclo de vida
10 jun 2022Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
IBM Spectrum Copy Data Management Admin 2.2.0.0 through 2.2.15.0 could allow a local attacker to bypass authentication restrictions, caused by the lack of proper session management. An attacker could exploit this vulnerability to bypass authentication and gain unauthorized access to the Spectrum Copy Data Management catalog which contains metadata. IBM X-Force ID: 223718.
CVSS:3.0/A:N/AC:H/I:N/S:U/C:L/UI:N/AV:L/PR:N/RC:C/RL:O/E:U
Productos afectados
IBM · Spectrum Copy Data Management