IBM Sterling External Authentication Server 3.4.3.2, 6.0.2.0, and 6.0.3.0 is vulnerable to path traversals, due to not properly validating RESTAPI configuration data. An authorized user could import invalid data which could be used for an attack. IBM X-Force ID: 220144.
References
Link | Resource |
---|---|
https://exchange.xforce.ibmcloud.com/vulnerabilities/220144 | VDB Entry Vendor Advisory |
https://www.ibm.com/support/pages/node/6558928 | Patch Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: ibm
Published: 2022-02-23T00:00:00
Updated: 2022-02-24T17:10:14
Reserved: 2022-01-03T00:00:00
Link: CVE-2022-22349
JSON object: View
NVD Information
Status : Analyzed
Published: 2022-02-24T17:15:07.943
Modified: 2022-03-02T21:14:36.777
Link: CVE-2022-22349
JSON object: View
Redhat Information
No data.
CWE