What is CVE-2022-42444?

CVE-2022-42444 is a medium-severity vulnerability in Ibm App Connect Enterprise. CVSS score: 4.9/10. Published 2023-02-06.

How severe is CVE-2022-42444?

Medium severity. CVSS v3 base score is 4.9 out of 10.

Vulnerability in Ibm App Connect Enterprise

CVE-2022-42444

IBM App Connect Enterprise 11.0.0.8 through 11.0.0.19 and 12.0.1.0 through 12.0.5.0 is vulnerable to a buffer overflow. A remote privileged user could overflow a buffer and cause the application to crash. IBM X-Force ID: 238538.

EPSS: 0.002 (46.4th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 4.9 (Medium). Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H.

Affected products

Ibm App Connect Enterprise — versions 11.0.0.8, 12.0.1.0

References

www.ibm.com/support/pages/node/6890609 (vendor-advisory)
exchange.xforce.ibmcloud.com/vulnerabilities/238538 (vdb-entry)

Frequently asked questions

What is CVE-2022-42444?: CVE-2022-42444 is a medium-severity vulnerability in Ibm App Connect Enterprise. CVSS score: 4.9/10. Published 2023-02-06.
How severe is CVE-2022-42444?: Medium severity. CVSS v3 base score is 4.9 out of 10.