CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
AI Score
Confidence
High
EPSS
Percentile
13.1%
A Security Vulnerability discovered by the IBM Ethical Hacking team has been fixed in IBM Security Directory products.
CVEID:CVE-2022-32751
**DESCRIPTION:**IBM Security Verify Directory 10.0.0 could disclose sensitive server information that could be used in further attacks against the system. IBM X-Force ID: 228437.
CVSS Base score: 5.3
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/228437 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)
Affected Product(s) | Version(s) |
---|---|
IBM Security Verify Directory | 10.0.0.0 - 10.0.0.1 |
IBM Security Directory Server | 6.4.0.0 - 6.4.0.27 |
IBM strongly recommends that customers update their products at the earliest convenience.
IBM Security Verify Directory Container 10.0.1.0 or later:
docker pull icr.io/isvd/verify-directory-server:latest
docker pull icr.io/isvd/verify-directory-proxy:latest
docker pull icr.io/isvd/verify-directory-seed:latest
Affected Products and Versions | Fix Availability |
---|---|
IBM Security Directory Server 6.4.0 | interim fix: 6.4.0.28-ISS-ISDS-IF0028 |
None
Vendor | Product | Version | CPE |
---|---|---|---|
ibm | security_directory_server | 6.4.0.1 | cpe:2.3:a:ibm:security_directory_server:6.4.0.1:*:*:*:*:*:*:* |
ibm | security_directory_server | 6.4.0.28 | cpe:2.3:a:ibm:security_directory_server:6.4.0.28:*:*:*:*:*:*:* |
ibm | security_verify_directory | 10.0.0.0 | cpe:2.3:a:ibm:security_verify_directory:10.0.0.0:*:*:*:*:*:*:* |
ibm | security_verify_directory | 10.0.1.0 | cpe:2.3:a:ibm:security_verify_directory:10.0.1.0:*:*:*:*:*:*:* |
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
AI Score
Confidence
High
EPSS
Percentile
13.1%