Vulnerability Description
IBM OpenBMC OP910 and OP940 could allow a privileged user to cause a denial of service by uploading or deleting too many CA certificates in a short period of time. IBM X-Force ID: 2226337.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ibm | Power System Ac922 \(8335-Gtg\) Firmware | >= op910, <= op910.70 |
| Ibm | Power System Ac922 \(8335-Gtg\) | - |
| Ibm | Power System Ac922 \(8335-Gth\) Firmware | >= op940, <= op940.40 |
| Ibm | Power System Ac922 \(8335-Gth\) | - |
| Ibm | Power System Ac922 \(8335-Gtx\) Firmware | >= op940, <= op940.40 |
| Ibm | Power System Ac922 \(8335-Gtx\) | - |
Related Weaknesses (CWE)
References
- https://exchange.xforce.ibmcloud.com/vulnerabilities/226337VDB EntryVendor Advisory
- https://www.ibm.com/support/pages/node/6840155Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/226337VDB EntryVendor Advisory
- https://www.ibm.com/support/pages/node/6840155Vendor Advisory
FAQ
What is CVE-2022-22488?
CVE-2022-22488 is a vulnerability with a CVSS score of 4.9 (MEDIUM). IBM OpenBMC OP910 and OP940 could allow a privileged user to cause a denial of service by uploading or deleting too many CA certificates in a short period of time. IBM X-Force ID: 2226337.
How severe is CVE-2022-22488?
CVE-2022-22488 has been rated MEDIUM with a CVSS base score of 4.9/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2022-22488?
Check the references section above for vendor advisories and patch information. Affected products include: Ibm Power System Ac922 \(8335-Gtg\) Firmware, Ibm Power System Ac922 \(8335-Gtg\), Ibm Power System Ac922 \(8335-Gth\) Firmware, Ibm Power System Ac922 \(8335-Gth\), Ibm Power System Ac922 \(8335-Gtx\) Firmware.