Vulnerability in Ibm Planning Analytics
CVE-2022-22339
IBM Planning Analytics 2.0 is vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other attack…
EPSS: 0.002 (35.8th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 6.5 (Medium). Vector: CVSS:3.0/AC:L/UI:N/C:L/S:U/A:L/AV:N/I:N/PR:N/RL:O/E:U/RC:C.
Affected products
- Ibm Planning Analytics — versions 2.0
References
- www.ibm.com/support/pages/node/6565099 (x_refsource_CONFIRM)
- ibm-planning-cve202222339-ssrf (219736) (vdb-entry, x_refsource_XF)
Frequently asked questions
- What is CVE-2022-22339?
- CVE-2022-22339 is a medium-severity vulnerability in Ibm Planning Analytics. CVSS score: 6.5/10. Published 2022-04-08.
- How severe is CVE-2022-22339?
- Medium severity. CVSS v3 base score is 6.5 out of 10.