Lucene search
IbmCVELIST:CVE-2022-35639HistoryJul 26, 2022 - 2:25 p.m.
CVE-2022-35639
2022-07-2614:25:39
ibm
www.cve.org
2
ibm
sterling partner engagement manager
vulnerability
unlimited connection length
server unresponsive
x-force id: 230932
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C
AI Score
7.3
Confidence
High
EPSS
0.001
Percentile
35.4%
IBM Sterling Partner Engagement Manager 6.1, 6.2, and Cloud 22.2 do not limit the length of a connection which could cause the server to become unresponsive. IBM X-Force ID: 230932.
CNA Affected
[
{
"product": "Sterling Partner Engagement Manager",
"vendor": "IBM",
"versions": [
{
"status": "affected",
"version": "6.2"
},
{
"status": "affected",
"version": "6.1"
}
]
},
{
"product": "Sterling Partner Engagement Manager on Cloud",
"vendor": "IBM",
"versions": [
{
"status": "affected",
"version": "22.2"
}
]
}
]Related
prion
prion
Code injection
2022-07-26 15:15:00
nvd
nvd
CVE-2022-35639
2022-07-26 15:15:10
ibm
ibm
cve
cve
CVE-2022-35639
2022-07-26 15:15:10
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C
AI Score
7.3
Confidence
High
EPSS
0.001
Percentile
35.4%
Related for CVELIST:CVE-2022-35639