Lucene search
HistoryFeb 12, 2024 - 6:15 p.m.
CVE-2022-38714
ibm
datastage
cloud pak
sensitive credential
privileged user
x-force
CVSS3
4.9
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
AI Score
4.6
Confidence
High
EPSS
0
Percentile
9.0%
IBM DataStage on Cloud Pak for Data 4.0.6 to 4.5.2 stores sensitive credential information that can be read by a privileged user. IBM X-Force ID: 235060.
Related
vulnrichment
vulnrichment
CVE-2022-38714 IBM DataStage on Cloud Pak for Data information disclosure
2024-02-12 17:41:24
ibm
ibm
cvelist
cvelist
CVE-2022-38714 IBM DataStage on Cloud Pak for Data information disclosure
2024-02-12 17:41:24
cve
cve
CVE-2022-38714
2024-02-12 18:15:08
prion
prion
Design/Logic Flaw
2024-02-12 18:15:00
CVSS3
4.9
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
AI Score
4.6
Confidence
High
EPSS
0
Percentile
9.0%
Related for NVD:CVE-2022-38714