What is CVE-2022-22333?

CVE-2022-22333 is a medium-severity vulnerability in Ibm Sterling Secure Proxy. CVSS score: 6.5/10. Published 2022-02-23.

How severe is CVE-2022-22333?

Medium severity. CVSS v3 base score is 6.5 out of 10.

Vulnerability in Ibm Sterling Secure Proxy

CVE-2022-22333

IBM Sterling Secure Proxy 6.0.3.0, 6.0.2.0, and 3.4.3.2 and IBM Sterling External Authentication Server are vulnerable a buffer overflow, due to the Jetty based GUI in the Secure Zone not properly validating the sizes of the form content a…

EPSS: 0.006 (71.2th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 6.5 (Medium). Vector: CVSS:3.0/AV:A/A:H/S:U/I:N/C:N/AC:L/PR:N/UI:N/RC:C/E:U/RL:O.

Affected products

Ibm Sterling Secure Proxy — versions 3.4.3.2, 6.0.3.0, 6.0.2.0

References

www.ibm.com/support/pages/node/6558796 (x_refsource_CONFIRM)
ibm-sterling-cve202222333-dos (219133) (vdb-entry, x_refsource_XF)

Frequently asked questions

What is CVE-2022-22333?: CVE-2022-22333 is a medium-severity vulnerability in Ibm Sterling Secure Proxy. CVSS score: 6.5/10. Published 2022-02-23.
How severe is CVE-2022-22333?: Medium severity. CVSS v3 base score is 6.5 out of 10.