CVE-2022-35279

"IBM Business Automation Workflow 18.0.0.0, 18.0.0.1, 18.0.0.2, 19.0.0.1, 19.0.0.2, 19.0.0.3, 20.0.0.1, 20.0.0.2, 21.0.2, 21.0.3, and 22.0.1 could disclose sensitive version information to authenticated users which could be used in further attacks against the system. IBM X-Force ID: 230537."
References
Link Resource
https://www.ibm.com/support/pages/node/6829847 Patch Vendor Advisory
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:ibm:business_automation_workflow:*:*:*:*:traditional:*:*:*
cpe:2.3:a:ibm:business_automation_workflow:*:*:*:*:traditional:*:*:*
cpe:2.3:a:ibm:business_automation_workflow:20.0.0.1:*:*:*:traditional:*:*:*
cpe:2.3:a:ibm:business_automation_workflow:20.0.0.1:-:*:*:containers:*:*:*
cpe:2.3:a:ibm:business_automation_workflow:20.0.0.2:*:*:*:traditional:*:*:*
cpe:2.3:a:ibm:business_automation_workflow:20.0.0.2:-:*:*:containers:*:*:*
cpe:2.3:a:ibm:business_automation_workflow:21.0.1:*:*:*:traditional:*:*:*
cpe:2.3:a:ibm:business_automation_workflow:21.0.2:*:*:*:traditional:*:*:*
cpe:2.3:a:ibm:business_automation_workflow:21.0.2:-:*:*:containers:*:*:*
cpe:2.3:a:ibm:business_automation_workflow:21.0.3:*:*:*:traditional:*:*:*
cpe:2.3:a:ibm:business_automation_workflow:21.0.3:if002:*:*:containers:*:*:*
cpe:2.3:a:ibm:business_automation_workflow:21.0.3:if005:*:*:containers:*:*:*
cpe:2.3:a:ibm:business_automation_workflow:21.0.3:if006:*:*:containers:*:*:*
cpe:2.3:a:ibm:business_automation_workflow:21.0.3:if007:*:*:containers:*:*:*
cpe:2.3:a:ibm:business_automation_workflow:21.0.3:if008:*:*:containers:*:*:*
cpe:2.3:a:ibm:business_automation_workflow:21.0.3:if009:*:*:containers:*:*:*
cpe:2.3:a:ibm:business_automation_workflow:21.0.3:if010:*:*:containers:*:*:*
cpe:2.3:a:ibm:business_automation_workflow:21.0.3:if011:*:*:containers:*:*:*
cpe:2.3:a:ibm:business_automation_workflow:22.0.1:*:*:*:traditional:*:*:*
cpe:2.3:a:ibm:business_automation_workflow:22.0.1:-:*:*:containers:*:*:*
cpe:2.3:a:ibm:business_automation_workflow:22.0.1:if001:*:*:containers:*:*:*

History

10 Nov 2022, 14:18

Type Values Removed Values Added
References (MISC) https://www.ibm.com/support/pages/node/6829847 - (MISC) https://www.ibm.com/support/pages/node/6829847 - Patch, Vendor Advisory
CPE cpe:2.3:a:ibm:business_automation_workflow:21.0.3:if011:*:*:containers:*:*:*
cpe:2.3:a:ibm:business_automation_workflow:21.0.2:-:*:*:containers:*:*:*
cpe:2.3:a:ibm:business_automation_workflow:21.0.2:*:*:*:traditional:*:*:*
cpe:2.3:a:ibm:business_automation_workflow:20.0.0.1:-:*:*:containers:*:*:*
cpe:2.3:a:ibm:business_automation_workflow:21.0.1:*:*:*:traditional:*:*:*
cpe:2.3:a:ibm:business_automation_workflow:22.0.1:-:*:*:containers:*:*:*
cpe:2.3:a:ibm:business_automation_workflow:22.0.1:*:*:*:traditional:*:*:*
cpe:2.3:a:ibm:business_automation_workflow:20.0.0.2:*:*:*:traditional:*:*:*
cpe:2.3:a:ibm:business_automation_workflow:20.0.0.2:-:*:*:containers:*:*:*
cpe:2.3:a:ibm:business_automation_workflow:21.0.3:if002:*:*:containers:*:*:*
cpe:2.3:a:ibm:business_automation_workflow:21.0.3:if007:*:*:containers:*:*:*
cpe:2.3:a:ibm:business_automation_workflow:21.0.3:if009:*:*:containers:*:*:*
cpe:2.3:a:ibm:business_automation_workflow:*:*:*:*:traditional:*:*:*
cpe:2.3:a:ibm:business_automation_workflow:21.0.3:if010:*:*:containers:*:*:*
cpe:2.3:a:ibm:business_automation_workflow:20.0.0.1:*:*:*:traditional:*:*:*
cpe:2.3:a:ibm:business_automation_workflow:21.0.3:if006:*:*:containers:*:*:*
cpe:2.3:a:ibm:business_automation_workflow:21.0.3:if008:*:*:containers:*:*:*
cpe:2.3:a:ibm:business_automation_workflow:22.0.1:if001:*:*:containers:*:*:*
cpe:2.3:a:ibm:business_automation_workflow:21.0.3:if005:*:*:containers:*:*:*
cpe:2.3:a:ibm:business_automation_workflow:21.0.3:*:*:*:traditional:*:*:*
CWE CWE-312
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 4.3

03 Nov 2022, 20:36

Type Values Removed Values Added
New CVE

Information

Published : 2022-11-03 20:15

Updated : 2024-02-04 22:51


NVD link : CVE-2022-35279

Mitre link : CVE-2022-35279

CVE.ORG link : CVE-2022-35279


JSON object : View

Products Affected

ibm

  • business_automation_workflow
CWE
CWE-312

Cleartext Storage of Sensitive Information