vulnerability
IBM WebSphere Application Server: CVE-2022-22476: IBM WebSphere Application Server Liberty is vulnerable to Identity Spoofing (CVE-2022-22476)
Severity | CVSS | Published | Added | Modified |
---|---|---|---|---|
6 | (AV:N/AC:M/Au:S/C:P/I:P/A:P) | Jul 8, 2022 | Aug 26, 2022 | Nov 27, 2024 |
Severity
6
CVSS
(AV:N/AC:M/Au:S/C:P/I:P/A:P)
Published
Jul 8, 2022
Added
Aug 26, 2022
Modified
Nov 27, 2024
Description
IBM WebSphere Application Server Liberty 17.0.0.3 through 22.0.0.7 and Open Liberty are vulnerable to identity spoofing by an authenticated user using a specially crafted request. IBM X-Force ID: 225604.
Solution(s)
ibm-was-install-8-5-ph47867-libertyibm-was-upgrade-8-5-22-0-0-8-liberty

NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.