Vulnerabilities > CVE-2022-22326 - Incorrect Authorization vulnerability in IBM products
Attack vector
LOCAL Attack complexity
LOW Privileges required
LOW Confidentiality impact
LOW Integrity impact
NONE Availability impact
NONE Summary
IBM Datapower Gateway 10.0.2.0 through 10.0.4.0, 10.0.1.0 through 10.0.1.5, and 2018.4.1.0 through 2018.4.1.18 could allow unauthorized viewing of logs and files due to insufficient authorization checks. IBM X-Force ID: 218856.
Vulnerable Configurations
Common Weakness Enumeration (CWE)
References
- https://exchange.xforce.ibmcloud.com/vulnerabilities/218856
- https://exchange.xforce.ibmcloud.com/vulnerabilities/218856
- https://www.ibm.com/support/pages/node/6560048
- https://www.ibm.com/support/pages/node/6560048
- https://www.ibm.com/support/pages/node/6608598
- https://www.ibm.com/support/pages/node/6608598