CVE-2022-22423

2022-09-2318:15:10

CWE-20

[email protected]

web.nvd.nist.gov

ibm

cryptographic architecture

denial of service

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

EPSS

Percentile

5.1%

JSON

IBM Common Cryptographic Architecture (CCA 5.x MTM for 4767 and CCA 7.x MTM for 4769) could allow a local user to cause a denial of service due to improper input validation. IBM X-Force ID: 223596.

Affected configurations

Nvd

Node

ibmcommon_cryptographic_architectureRange5.0.0–5.7.12mtm_for_4767

AND

ibmaixMatch-

ibmiMatch-

linuxlinux_kernelMatch-

Node

ibmcommon_cryptographic_architectureRange7.0.0–7.3.44mtm_for_4769

AND

ibmaixMatch-

ibmiMatch-

ibmpowerlinuxMatch-

linuxlinux_kernelMatch-

VendorProductVersionCPE
ibmcommon_cryptographic_architecture*cpe:2.3:a:ibm:common_cryptographic_architecture:*:*:*:*:mtm_for_4767:*:*:*
ibmaix-cpe:2.3:o:ibm:aix:-:*:*:*:*:*:*:*
ibmi-cpe:2.3:o:ibm:i:-:*:*:*:*:*:*:*
linuxlinux_kernel-cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
ibmcommon_cryptographic_architecture*cpe:2.3:a:ibm:common_cryptographic_architecture:*:*:*:*:mtm_for_4769:*:*:*
ibmpowerlinux-cpe:2.3:o:ibm:powerlinux:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
ibm	common_cryptographic_architecture	*	cpe:2.3:a:ibm:common_cryptographic_architecture:::::mtm_for_4767:::*
ibm	aix	-	cpe:2.3:o:ibm:aix:-:::::::*
ibm	i	-	cpe:2.3:o:ibm:i:-:::::::*
linux	linux_kernel	-	cpe:2.3:o:linux:linux_kernel:-:::::::*
ibm	common_cryptographic_architecture	*	cpe:2.3:a:ibm:common_cryptographic_architecture:::::mtm_for_4769:::*
ibm	powerlinux	-	cpe:2.3:o:ibm:powerlinux:-:::::::*