cvelist/2022/22xxx/CVE-2022-22404.json

{
   "description" : {
      "description_data" : [
         {
            "value" : "IBM App Connect Enterprise Certified Container Dashboard UI (IBM App Connect Enterprise Certified Container 1.5, 2.0, 2.1, 3.0, and 3.1) may be vulnerable to denial of service due to excessive rate limiting.",
            "lang" : "eng"
         }
      ]
   },
   "CVE_data_meta" : {
      "ID" : "CVE-2022-22404",
      "ASSIGNER" : "psirt@us.ibm.com",
      "STATE" : "PUBLIC",
      "DATE_PUBLIC" : "2022-03-31T00:00:00"
   },
   "data_type" : "CVE",
   "references" : {
      "reference_data" : [
         {
            "name" : "https://www.ibm.com/support/pages/node/6568359",
            "title" : "IBM Security Bulletin 6568359 (App Connect Enterprise Certified Container)",
            "refsource" : "CONFIRM",
            "url" : "https://www.ibm.com/support/pages/node/6568359"
         },
         {
            "url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/222575",
            "refsource" : "XF",
            "title" : "X-Force Vulnerability Report",
            "name" : "ibm-appconnect-cve202222404-dos (222575)"
         }
      ]
   },
   "data_version" : "4.0",
   "affects" : {
      "vendor" : {
         "vendor_data" : [
            {
               "product" : {
                  "product_data" : [
                     {
                        "product_name" : "App Connect Enterprise Certified Container",
                        "version" : {
                           "version_data" : [
                              {
                                 "version_value" : "1.5"
                              },
                              {
                                 "version_value" : "2.0"
                              },
                              {
                                 "version_value" : "2.1"
                              },
                              {
                                 "version_value" : "3.0"
                              },
                              {
                                 "version_value" : "3.1"
                              }
                           ]
                        }
                     }
                  ]
               },
               "vendor_name" : "IBM"
            }
         ]
      }
   },
   "problemtype" : {
      "problemtype_data" : [
         {
            "description" : [
               {
                  "value" : "Denial of Service",
                  "lang" : "eng"
               }
            ]
         }
      ]
   },
   "data_format" : "MITRE",
   "impact" : {
      "cvssv3" : {
         "BM" : {
            "A" : "H",
            "PR" : "L",
            "S" : "U",
            "AV" : "N",
            "UI" : "N",
            "AC" : "L",
            "SCORE" : "6.500",
            "I" : "N",
            "C" : "N"
         },
         "TM" : {
            "RC" : "C",
            "RL" : "O",
            "E" : "U"
         }
      }
   }
}