Vulnerability Details CVE-2022-22494
IBM Spectrum Protect Operations Center 8.1.0.000 through 8.1.14 could allow a remote attacker to gain details of the database, such as type and version, by sending a specially-crafted HTTP request. This information could then be used in future attacks. IBM X-Force ID: 226940.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 47.7%
CVSS Severity
CVSS v3 Score 3.7
CVSS v2 Score 5.0
References
Products affected by CVE-2022-22494
-
cpe:2.3:a:ibm:spectrum_protect_operations_center:8.1.0.000
-
cpe:2.3:a:ibm:spectrum_protect_operations_center:8.1.1.000
-
cpe:2.3:a:ibm:spectrum_protect_operations_center:8.1.10
-
cpe:2.3:a:ibm:spectrum_protect_operations_center:8.1.10.000
-
cpe:2.3:a:ibm:spectrum_protect_operations_center:8.1.10.200
-
cpe:2.3:a:ibm:spectrum_protect_operations_center:8.1.13.000
-
cpe:2.3:a:ibm:spectrum_protect_operations_center:8.1.14.000
-
cpe:2.3:a:ibm:spectrum_protect_operations_center:8.1.2.000
-
cpe:2.3:a:ibm:spectrum_protect_operations_center:8.1.3.000
-
cpe:2.3:a:ibm:spectrum_protect_operations_center:8.1.4.000
-
cpe:2.3:a:ibm:spectrum_protect_operations_center:8.1.5.000
-
cpe:2.3:a:ibm:spectrum_protect_operations_center:8.1.6.000
-
cpe:2.3:a:ibm:spectrum_protect_operations_center:8.1.7.000
-
cpe:2.3:a:ibm:spectrum_protect_operations_center:8.1.8.000
-
cpe:2.3:a:ibm:spectrum_protect_operations_center:8.1.9.000
-
cpe:2.3:o:ibm:aix:-
-
cpe:2.3:o:linux:linux_kernel:-
-
cpe:2.3:o:microsoft:windows:-