CVE-2022-22326
published 2022-08-01CVE-2022-22326: IBM Datapower Gateway 10.0.2.0 through 10.0.4.0, 10.0.1.0 through 10.0.1.5, and 2018.4.1.0 through 2018.4.1.18 could allow unauthorized viewing of logs and…
low3.3CVSS 3.1
AVLACLPRLUINSUCLINAN
IBM Datapower Gateway 10.0.2.0 through 10.0.4.0, 10.0.1.0 through 10.0.1.5, and 2018.4.1.0 through 2018.4.1.18 could allow unauthorized viewing of logs and files due to insufficient authorization checks. IBM X-Force ID: 218856.
Affected
13 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ibm | datapower_gateway | — | — |
| ibm | datapower_gateway | — | — |
| ibm | datapower_gateway | — | — |
| ibm | datapower_gateway | — | — |
| ibm | datapower_gateway | — | — |
| ibm | datapower_gateway | — | — |
| ibm | datapower_gateway | >= 10.0.1.0 < 10.0.1.6 | 10.0.1.6 |
| ibm | datapower_gateway | >= 10.0.2.0 < 10.0.5.0 | 10.0.5.0 |
| ibm | datapower_gateway | >= 2018.4.1.0 < 2018.4.1.19 | 2018.4.1.19 |
| ibm | mq_appliance_m2001_firmware | < 9.2.0.5 | 9.2.0.5 |
| ibm | mq_appliance_m2001_firmware | < 9.2.5 | 9.2.5 |
| ibm | mq_appliance_m2002_firmware | < 9.2.0.5 | 9.2.0.5 |
| ibm | mq_appliance_m2002_firmware | < 9.2.5 | 9.2.5 |