The IBM Spectrum Protect 8.1.14.000 server could allow a remote attacker to bypass security restrictions, caused by improper enforcement of access controls. By signing in, an attacker could exploit this vulnerability to bypass security and gain unauthorized administrator or node access to the vulnerable server.
References
Link | Resource |
---|---|
https://exchange.xforce.ibmcloud.com/vulnerabilities/222147 | VDB Entry Vendor Advisory |
https://www.ibm.com/support/pages/node/6564745 | Patch Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
History
08 Aug 2023, 14:21
Type | Values Removed | Values Added |
---|---|---|
CWE | NVD-CWE-Other |
28 Mar 2022, 17:28
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : 9.0
v3 : 8.8 |
CPE | cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:* cpe:2.3:o:ibm:aix:-:*:*:*:*:*:*:* cpe:2.3:a:ibm:spectrum_protect:8.1.14.100:*:*:*:*:*:*:* cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:* |
|
CWE | CWE-269 | |
References | (XF) https://exchange.xforce.ibmcloud.com/vulnerabilities/222147 - VDB Entry, Vendor Advisory | |
References | (CONFIRM) https://www.ibm.com/support/pages/node/6564745 - Patch, Vendor Advisory |
21 Mar 2022, 17:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-03-21 17:15
Updated : 2024-02-04 22:29
NVD link : CVE-2022-22394
Mitre link : CVE-2022-22394
CVE.ORG link : CVE-2022-22394
JSON object : View
Products Affected
ibm
- spectrum_protect
- aix
microsoft
- windows
linux
- linux_kernel
CWE