CVE-2022-35282

🗓️ 28 Sep 2022 15:55:14Reported by ibmType

cve🔗 web.nvd.nist.gov📰️ 3 Media mentions👁 78 Views

IBM WebSphere App Server 7.0-9.0 SSRF vulnerabilit

Reporter	Title	Published	Views	Family All 35
IBM Security Bulletins	Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server shipped with Tivoli Netcool/OMNIbus WebGUI (CVE-2022-35282)	28 Sep 202208:00	–	ibm
IBM Security Bulletins	Security Bulletin: A vulnerability has been identified in IBM WebSphere Application Server shipped with IBM Buinses Automation Workflow and IBM Business Process Manager (CVE-2022-35282)	29 Sep 202206:55	–	ibm
IBM Security Bulletins	Security Bulletin:IBM Tivoli Composite Application Manager for Application Diagnostics Installed WebSphere Application Server traditional is vulnerable to Server-Side Request Forgery (CVE-2022-35282)	6 Dec 202215:24	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple security vulnerabilities have been identified in IBM WebSphere Application Server shipped with IBM Rational ClearCase ( CVE-2022-34165, CVE-2022-35282, CVE-2022-34336 )	10 Oct 202206:06	–	ibm
IBM Security Bulletins	Security Bulletin: IBM WebSphere Application Server, which is bundled with IBM Tivoli Business Service Manager, is vulnerable to Server-Side Request Forgery (CVE-2022-35282)	6 Dec 202216:11	–	ibm
IBM Security Bulletins	Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server shipped with Tivoli System Automation Application Manager (CVE-2022-35282)	13 Dec 202210:43	–	ibm
IBM Security Bulletins	Security Bulletin: A security vulnerability has been identified in WebSphere Application Server shipped with IBM Security Key Lifecycle Manager (GKLM) (CVE-2022-35282)	19 Oct 202211:22	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerability in IBM WebSphere Application Server (CVE-2022-35282) shipped with IBM Workload Scheduler 9.4	16 Dec 202217:09	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerability identified in IBM WebSphere Application Server shipped with IBM WebSphere Service Registry and Repository (CVE-2022-35282)	29 Sep 202215:01	–	ibm
IBM Security Bulletins	Security Bulletin: IBM WebSphere Application Server is vulnerable to Server-Side Request Forgery (CVE-2022-35282)	27 Sep 202218:55	–	ibm

NVD

Vulners

Node

ibm websphere_application_serverRange7.0.0.0–7.0.0.45

ibm websphere_application_serverRange8.0.0.0–8.0.0.15

ibm websphere_application_serverRange8.5.0.0–8.5.5.22

ibm websphere_application_serverRange9.0.0.0–9.0.5.13

[
  {
    "product": "WebSphere Application Server",
    "vendor": "IBM",
    "versions": [
      {
        "status": "affected",
        "version": "7.0"
      },
      {
        "status": "affected",
        "version": "8.0"
      },
      {
        "status": "affected",
        "version": "8.5"
      },
      {
        "status": "affected",
        "version": "9.0"
      }
    ]
  }
]