Weakness in IBM WebSphere Application Server Liberty Security
CVE-2022-22310

4.8MEDIUM

Key Information:

Vendor: IBM
Status: Websphere Application Server Liberty
Vendor: CVE Published:; 18 January 2022

What is CVE-2022-22310?

IBM WebSphere Application Server Liberty versions 21.0.0.10 to 21.0.0.12 are affected by a vulnerability that allows remote attackers to exploit security weaknesses. This vulnerability can permit unauthorized access to sensitive information within JAX-WS applications hosted on the server. The issue arises from insufficient security measures implemented in the affected versions, potentially leading to data exposure and unauthorized data manipulation.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

WebSphere Application Server Liberty 21.0.0.10

WebSphere Application Server Liberty 21.0.0.12

References

https://www.ibm.com/support/pages/node/6541530

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/217224

vdb-entryx_refsource_XF

CVSS V3.1

Score:

4.8

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jan 18, 2022
Vulnerability Reserved
Jan 3, 2022

JSON

IBM