What is CVE-2022-43928?

CVE-2022-43928 is a medium-severity vulnerability in Ibm Db2 Mirror For I. CVSS score: 4.9/10. Published 2023-04-07.

How severe is CVE-2022-43928?

Medium severity. CVSS v3 base score is 4.9 out of 10.

Vulnerability in Ibm Db2 Mirror For I

CVE-2022-43928

The IBM Toolbox for Java (Db2 Mirror for i 7.4 and 7.5) could allow a user to obtain sensitive information, caused by utilizing a Java string for processing. Since Java strings are immutable, their contents exist in memory until garbage co…

EPSS: 0.001 (26.5th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 4.9 (Medium). Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N.

Affected products

Ibm Db2 Mirror For I — versions 7.4, 7.5

References

www.ibm.com/support/pages/node/6981113 (vendor-advisory)
exchange.xforce.ibmcloud.com/vulnerabilities/241675 (vdb-entry)

Frequently asked questions

What is CVE-2022-43928?: CVE-2022-43928 is a medium-severity vulnerability in Ibm Db2 Mirror For I. CVSS score: 4.9/10. Published 2023-04-07.
How severe is CVE-2022-43928?: Medium severity. CVSS v3 base score is 4.9 out of 10.