2 matches found
CVE-2022-22323
IBM Security Identity Manager’s Password Synchronization Plug-in for Windows AD (10.x) contains a heap-based buffer overflow leading to denial of service when exploited by an authenticated attacker. The official IBM bulletin confirms CVE-2022-22323 and provides a mitigation: upgrade to IBM Securi...
CVE-2022-22312
CVE-2022-22312 concerns IBM Security Identity Manager’s Password Synchronization Plug-in for Windows AD (10.x). The vulnerability is a heap-based buffer overflow in the Password Synch Plug-in that can cause a denial of service when exploited by an authenticated attacker. IBM’s bulletin confirms t...