Vulnerability Description
IBM Spectrum Copy Data Management Admin 2.2.0.0 through 2.2.15.0 could allow a local attacker to bypass authentication restrictions, caused by the lack of proper session management. An attacker could exploit this vulnerability to bypass authentication and gain unauthorized access to the Spectrum Copy Data Management catalog which contains metadata. IBM X-Force ID: 223718.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ibm | Spectrum Copy Data Management | >= 2.2.0.0, <= 2.2.15.0 |
| Linux | Linux Kernel | - |
References
- https://exchange.xforce.ibmcloud.com/vulnerabilities/223718VDB EntryVendor Advisory
- https://www.ibm.com/support/pages/node/6593721PatchVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/223718VDB EntryVendor Advisory
- https://www.ibm.com/support/pages/node/6593721PatchVendor Advisory
FAQ
What is CVE-2022-22426?
CVE-2022-22426 is a vulnerability with a CVSS score of 3.3 (LOW). IBM Spectrum Copy Data Management Admin 2.2.0.0 through 2.2.15.0 could allow a local attacker to bypass authentication restrictions, caused by the lack of proper session management. An attacker could ...
How severe is CVE-2022-22426?
CVE-2022-22426 has been rated LOW with a CVSS base score of 3.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2022-22426?
Check the references section above for vendor advisories and patch information. Affected products include: Ibm Spectrum Copy Data Management, Linux Linux Kernel.