CVE-2022-22310

State: PUBLISHED · Published: 2022-01-19 · Updated: 2024-09-16 · Assigner: ibm

Description

IBM WebSphere Application Server Liberty 21.0.0.10 through 21.0.0.12 could provide weaker than expected security. A remote attacker could exploit this weakness to obtain sensitive information and gain unauthorized access to JAX-WS applications. IBM X-Force ID: 217224.

CWE

(none)

Affected

IBM / WebSphere Application Server Liberty — v=21.0.0.10 [affected]; v=21.0.0.12 [affected]

CVSS

3.0 score=4.8 severity=MEDIUM CVSS:3.0/C:L/A:N/AC:H/PR:N/I:L/S:U/UI:N/AV:N/RC:C/RL:O/E:U

References

https://www.ibm.com/support/pages/node/6541530 x_refsource_CONFIRM
https://exchange.xforce.ibmcloud.com/vulnerabilities/217224 vdb-entry, x_refsource_XF

Source

cvelistV5-main/cves/2022/22xxx/CVE-2022-22310.json