CVE-2022-43916

MEDIUM

IBM App Connect Enterprise Certified Container <12.7 - DoS

Title source: llm

Description

IBM App Connect Enterprise Certified Container 7.1, 7.2, 8.0, 8.1, 8.2, 9.0, 9.1, 9.2, 10.0, 10.1, 11.0, 11.1, 11.2, 11.3, 11.4, 11.5, 11.6, 12.0, 12.1, 12.2, 12.3, 12.4, 12.5, 12.6, and 12.7 Pods do not restrict network egress for Pods that are used for internal infrastructure.

References (1)

[Vendor Advisory] https://www.ibm.com/support/pages/node/7181916

Scores

CVSS v3 6.8

EPSS 0.0005

EPSS Percentile 14.9%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N

Classification

CWE

CWE-923

Status published

Affected Products (1)

ibm/app_connect_enterprise_certified_container < 12.8

Timeline

Published Jan 30, 2025

Tracked Since Feb 18, 2026