Vulnerability in Ibm Aix
CVE-2022-40232
IBM Sterling B2B Integrator Standard Edition 6.1.0.0 through 6.1.1.1, and 6.1.2.0 could allow an authenticated user to perform actions they should not have access to due to improper permission controls. IBM X-Force ID: 235597.
EPSS: 0.005 (36.2th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 6.3 (Medium). Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L.
Affected products
- Ibm Aix
- Ibm Sterling_b2b_integrator — versions 6.1.2.0
- Ibm Sterling B2b Integrator Standard Edition — versions 6.1.0.0, 6.1.2.0
- Linux Linux_kernel
- Microsoft Windows
Weakness classification (CWE)
References
- psirt@us.ibm.com (vendor-advisory, Patch, Vendor Advisory)
- psirt@us.ibm.com (VDB Entry, vdb-entry, Vendor Advisory)
Frequently asked questions
- What is CVE-2022-40232?
- CVE-2022-40232 is a medium-severity vulnerability in Ibm Aix, classified under Incorrect Default Permissions. CVSS score: 6.3/10. Published 2023-02-17.
- How severe is CVE-2022-40232?
- Medium severity. CVSS v3 base score is 6.3 out of 10.