Vulnerability in Ibm Security Verify Governance
CVE-2022-22452
IBM Security Verify Identity Manager 10.0 uses an inadequate account lockout setting that could allow a remote attacker to brute force account credentials. IBM X-Force ID: 224918.
EPSS: 0.001 (34.2th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 5.3 (Medium). Vector: CVSS:3.0/I:N/PR:N/AV:N/C:L/UI:N/S:U/A:N/AC:L/E:U/RL:O/RC:C.
Affected products
- Ibm Security Verify Governance — versions 10.0
References
- www.ibm.com/support/pages/node/6603405 (x_refsource_CONFIRM)
- ibm-sv-cve202222452-info-disc (224918) (vdb-entry, x_refsource_XF)
Frequently asked questions
- What is CVE-2022-22452?
- CVE-2022-22452 is a medium-severity vulnerability in Ibm Security Verify Governance. CVSS score: 5.3/10. Published 2022-07-14.
- How severe is CVE-2022-22452?
- Medium severity. CVSS v3 base score is 5.3 out of 10.