CVE-2022-22426

Summary

IBM Spectrum Copy Data Management Admin 2.2.0.0 through 2.2.15.0 could allow a local attacker to bypass authentication restrictions, caused by the lack of proper session management. An attacker could exploit this vulnerability to bypass authentication and gain unauthorized access to the Spectrum Copy Data Management catalog which contains metadata. IBM X-Force ID: 223718.

Affected Software

VendorProductVersion RangeStatus
IBMSpectrum Copy Data Management2.2.0.0affected
IBMSpectrum Copy Data Management2.2.15.0affected

Weaknesses

  • Obtain Information

ADP Enrichment

CVE Program Container

Additional References

References