CVE-2022-22310

MEDIUM

IBM WebSphere Application Server Liberty <21.0.0.10-21.0.0.12 - Inf...

Title source: llm
STIX 2.1

Description

IBM WebSphere Application Server Liberty 21.0.0.10 through 21.0.0.12 could provide weaker than expected security. A remote attacker could exploit this weakness to obtain sensitive information and gain unauthorized access to JAX-WS applications. IBM X-Force ID: 217224.

References (2)

Core 2
Core References
Patch, Vendor Advisory x_refsource_confirm
https://www.ibm.com/support/pages/node/6541530
VDB Entry, Vendor Advisory vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/217224

Scores

CVSS v3 6.5
EPSS 0.0024
EPSS Percentile 47.5%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

Details

Status published
Products (1)
ibm/websphere_application_server 21.0.0.10 - 21.0.0.12
Published Jan 19, 2022
Tracked Since Feb 18, 2026