← Volver a CVEs
CVE-2022-35279
MEDIUM4.3
Descripcion
"IBM Business Automation Workflow 18.0.0.0, 18.0.0.1, 18.0.0.2, 19.0.0.1, 19.0.0.2, 19.0.0.3, 20.0.0.1, 20.0.0.2, 21.0.2, 21.0.3, and 22.0.1 could disclose sensitive version information to authenticated users which could be used in further attacks against the system. IBM X-Force ID: 230537."
Detalles CVE
Puntuacion CVSS v3.14.3
SeveridadMEDIUM
Vector CVSSCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Vector de ataqueNETWORK
ComplejidadLOW
Privilegios requeridosLOW
Interaccion usuarioNONE
Publicado11/3/2022
Ultima modificacion5/2/2025
Fuentenvd
Avistamientos honeypot0
Productos afectados
ibm:business_automation_workflow
Debilidades (CWE)
CWE-312CWE-312
Referencias
https://www.ibm.com/support/pages/node/6829847(psirt@us.ibm.com)
https://www.ibm.com/support/pages/node/6829847(af854a3a-2127-422b-91ae-364da2661108)
Correlaciones IOC
Sin correlaciones registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.