Denial of Service Vulnerability in IBM App Connect Enterprise Certified Container Dashboard UI
CVE-2022-22404

6.5MEDIUM

Key Information:

Vendor: IBM
Status: App Connect Enterprise Certified Container
Vendor: CVE Published:; 31 March 2022

Summary

The IBM App Connect Enterprise Certified Container Dashboard UI is susceptible to a denial of service (DoS) attack due to inadequate rate limiting mechanisms. This flaw could be exploited by attackers to overwhelm the system, resulting in service outages and diminished availability. It is critical for organizations using affected versions to implement appropriate safeguards to mitigate potential impacts on their operations.

Affected Version(s)

App Connect Enterprise Certified Container 1.5

App Connect Enterprise Certified Container 2.0

App Connect Enterprise Certified Container 2.1

References

https://www.ibm.com/support/pages/node/6568359

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/222575

vdb-entryx_refsource_XF

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Mar 31, 2022
Vulnerability Reserved
Jan 3, 2022