Multiple vulnerabilities in IBM WebSphere Automation



Published: 2022-12-01
Risk Low
Patch available YES
Number of vulnerabilities 2
CVE-ID CVE-2022-43901
CVE-2022-43900
CWE-ID CWE-200
CWE-254
Exploitation vector Local network
Public exploit N/A
Vulnerable software
Subscribe 		WebSphere Automation
Server applications / Other server solutions

Vendor IBM Corporation

Security Bulletin

This security bulletin contains information about 2 vulnerabilities.

1) Information disclosure

EUVDB-ID: #VU69789

Risk: Low

CVSSv3.1: 3.1 [CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N/E:U/RL:O/RC:C]

CVE-ID: CVE-2022-43901

CWE-ID: CWE-200 - Information exposure

Exploit availability: No

Description

The vulnerability allows a remote user to gain access to potentially sensitive information.

The vulnerability exists due to excessive data output by the application. A remote user can gain unauthorized access to sensitive information on other IBM WebSphere Automation for IBM Cloud Pak for Watson AIOps components.

Mitigation

Install updates from vendor's website.

Vulnerable software versions

WebSphere Automation: 1.4 - 1.4.2

External links

http://www.ibm.com/blogs/psirt/security-bulletin-ibm-websphere-automation-for-ibm-cloud-pak-for-watson-aiops-is-vulnerable-to-information-disclosure-and-weaker-security-cve-2022-43901-cve-2022-43900/
http://www.ibm.com/support/pages/node/6842605


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the local network (LAN).

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

2) Security features bypass

EUVDB-ID: #VU69790

Risk: Low

CVSSv3.1: 3.1 [CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N/E:U/RL:O/RC:C]

CVE-ID: CVE-2022-43900

CWE-ID: CWE-254 - Security Features

Exploit availability: No

Description

The vulnerability allows a remote user to bypass implemented security restrictions.

The vulnerability exists due to unspecified error. A remote user can initiate outbound network connections to another system.

Mitigation

Install updates from vendor's website.

Vulnerable software versions

WebSphere Automation: 1.4 - 1.4.2

External links

http://www.ibm.com/blogs/psirt/security-bulletin-ibm-websphere-automation-for-ibm-cloud-pak-for-watson-aiops-is-vulnerable-to-information-disclosure-and-weaker-security-cve-2022-43901-cve-2022-43900/
http://www.ibm.com/support/pages/node/6842605


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the local network (LAN).

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.



###SIDEBAR###