Rewterz Threat Advisory – CVE-2022-22488 – IBM OpenBMC Vulnerability
November 21, 2022Rewterz Threat Alert – SmokeLoader Malware – Active IOCs
November 21, 2022Rewterz Threat Advisory – CVE-2022-22488 – IBM OpenBMC Vulnerability
November 21, 2022Rewterz Threat Alert – SmokeLoader Malware – Active IOCs
November 21, 2022Severity
Medium
Analysis Summary
CVE-2022-40751
IBM UrbanCode Deploy (UCD) 6.2.7.0 through 6.2.7.17, 7.0.0.0 through 7.0.5.12, 7.1.0.0 through 7.1.2.8, and 7.2.0.0 through 7.2.3.1 could allow a user with administrative privileges including “Manage Security” permissions may be able to recover a credential previously saved for performing authenticated LDAP searches.
Impact
Information Disclosure
Indicators Of Compromise
CVE
- CVE-2022-40751
Affected Vendors
IBM
Affected Products
- IBM UrbanCode Deploy 6.2.7.0
- IBM UrbanCode Deploy 7.0.0.0
- IBM UrbanCode Deploy 7.1.0.0
- IBM UrbanCode Deploy 7.2.0.0
- IBM UrbanCode Deploy 6.2.7.17
- IBM UrbanCode Deploy 7.0.5.12
- IBM UrbanCode Deploy 7.1.2.8
- IBM UrbanCode Deploy 7.2.3.1
Remediation
Refer to IBM Security Bulletin for patch, upgrade or suggested workaround information.