← volver
CVE-2022-22487

CVE-2022-22487

CVSS 5.9 MEDIUMEPSS 1.4%
Vexday Risk Score
13Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS 5.9EPSS 1.4%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
30 jun 2022Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
An IBM Spectrum Protect storage agent could allow a remote attacker to perform a brute force attack by allowing unlimited attempts to login to the storage agent without locking the administrative ID. A remote attacker could exploit this vulnerability using brute force techniques to gain unauthorized administrative access to both the IBM Spectrum Protect storage agent and the IBM Spectrum Protect Server 8.1.0.000 through 8.1.14 with which it communicates. IBM X-Force ID: 226326.
CVSS:3.0/S:U/A:N/AV:N/AC:H/UI:N/PR:N/I:N/C:H/RL:O/RC:C/E:U
Productos afectados
IBM · Spectrum Protect Server

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://exchange.xforce.ibmcloud.com/vulnerabilities/226326https://www.ibm.com/support/pages/node/6596881