CVE-2022-33162

216.73.217.22

· Published 16/08/2024 19:15 · Modified 07/09/2024 13:15

Labels: CVE-2022-33162 2024-08-16 CVE-2022-33162 CWE-119 NVD-CWE-noinfo [email protected]

Essential information

Published: 16/08/2024 19:15
Modified: 07/09/2024 13:15
Author: —
Creator: —
CVSS: 9.8 CRITICAL (v3.1)
CISA KEV: No
CWE: —
CVSS vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CVSS metrics

Description

IBM Security Directory Integrator 7.2.0 and Security Verify Directory Integrator 10.0.0 does not perform any authentication for functionality that requires a provable user identity or consumes a significant amount of resources, at the privilege level of a standard unprivileged user. IBM X-Force ID: 228570.

NVD status

Status: Modified — CVE has been recently published to the CVE List and has been received by the NVD.
Source: [email protected]
NVD: View on NVD

Affected products (CPE)

Product	CPE
ibm / security directory integrator	`cpe:2.3:a:ibm:security_directory_integrator:7.2.0:::::::*`
ibm / security verify directory integrator	`cpe:2.3:a:ibm:security_verify_directory_integrator:10.0.0:::::::*`