Rewterz Threat Advisory – CVE-2022-35722 – IBM Jazz for Service Management Vulnerability
September 28, 2022Rewterz Threat Advisory – CVE-2022-22387 – IBM Application Gateway Vulnerability
September 28, 2022Rewterz Threat Advisory – CVE-2022-35722 – IBM Jazz for Service Management Vulnerability
September 28, 2022Rewterz Threat Advisory – CVE-2022-22387 – IBM Application Gateway Vulnerability
September 28, 2022Severity
Medium
Analysis Summary
CVE-2022-35282
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 is vulnerable to server-side request forgery (SSRF). By sending a specially crafted request, an attacker with local network access could exploit this vulnerability to obtain sensitive data.
Impact
- Unauthorized Access
Indicators Of Compromise
CVE
- CVE-2022-35282
Affected Vendors
IBM
Affected Products
- IBM WebSphere Application Server 7.0
- IBM WebSphere Application Server 8.0
- IBM WebSphere Application Server 8.5
- IBM WebSphere Application Server 9.0
Remediation
Refer to IBM Security Advisory for patch, upgrade or suggested workaround information.