What is CVE-2022-22396?

CVE-2022-22396 is a medium-severity vulnerability in Ibm Spectrum Protect Plus. CVSS score: 6.8/10. Published 2022-06-06.

How severe is CVE-2022-22396?

Medium severity. CVSS v3 base score is 6.8 out of 10.

Vulnerability in Ibm Spectrum Protect Plus

CVE-2022-22396

Credentials are printed in clear text in the IBM Spectrum Protect Plus 10.1.0.0 through 10.1.9.3 virgo log file in certain cases. Credentials could be the remote vSnap, offload targets, or VADP credentials depending on the operation perfor…

EPSS: 0.001 (25.0th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 6.8 (Medium). Vector: CVSS:3.0/I:N/A:N/AV:N/AC:L/S:C/UI:N/PR:H/C:H/RL:O/E:U/RC:C.

Affected products

Ibm Spectrum Protect Plus — versions 10.1.0.0, 10.1.9.3

References

www.ibm.com/support/pages/node/6591505 (x_refsource_CONFIRM)
ibm-spectrum-cve202222396-info-disc (222231) (vdb-entry, x_refsource_XF)

Frequently asked questions

What is CVE-2022-22396?: CVE-2022-22396 is a medium-severity vulnerability in Ibm Spectrum Protect Plus. CVSS score: 6.8/10. Published 2022-06-06.
How severe is CVE-2022-22396?: Medium severity. CVSS v3 base score is 6.8 out of 10.