Vulnerability Description
IBM App Connect Enterprise 11.0.0.17 through 11.0.0.19 and 12.0.4.0 and 12.0.5.0 contains an unspecified vulnerability in the Discovery Connector nodes which may cause a 3rd party system’s credentials to be exposed to a privileged attacker. IBM X-Force ID: 238211.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ibm | App Connect Enterprise | >= 11.0.0.17, <= 11.0.0.19 |
| Ibm | Aix | - |
| Linux | Linux Kernel | - |
| Microsoft | Windows | - |
| Ibm | App Connect Enterprise Certified Container | 4.1 |
| Redhat | Openshift | - |
Related Weaknesses (CWE)
References
- https://exchange.xforce.ibmcloud.com/vulnerabilities/238211VDB EntryVendor Advisory
- https://www.ibm.com/support/pages/node/6952435Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/238211VDB EntryVendor Advisory
- https://www.ibm.com/support/pages/node/6952435Vendor Advisory
FAQ
What is CVE-2022-42439?
CVE-2022-42439 is a vulnerability with a CVSS score of 6.8 (MEDIUM). IBM App Connect Enterprise 11.0.0.17 through 11.0.0.19 and 12.0.4.0 and 12.0.5.0 contains an unspecified vulnerability in the Discovery Connector nodes which may cause a 3rd party system’s credential...
How severe is CVE-2022-42439?
CVE-2022-42439 has been rated MEDIUM with a CVSS base score of 6.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2022-42439?
Check the references section above for vendor advisories and patch information. Affected products include: Ibm App Connect Enterprise, Ibm Aix, Linux Linux Kernel, Microsoft Windows, Ibm App Connect Enterprise Certified Container.