CVE-2022-35287
First published: Tue Jul 12 2022(Updated: )
IBM Security Verify Information Queue 10.0.2 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data. IBM X-Force ID: 230817.
Credit: psirt@us.ibm.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| IBM Security Verify Information Queue | =10.0.2 | |
| <=10.0.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for IBM Security Verify Information Queue?
The vulnerability ID for IBM Security Verify Information Queue is CVE-2022-35287.
What is the severity level of CVE-2022-35287?
The severity level of CVE-2022-35287 is high with a value of 7.5.
What does IBM Security Verify Information Queue contain that poses a vulnerability?
IBM Security Verify Information Queue contains hard-coded credentials, such as a password or cryptographic key, which can be exploited.
What is the affected version of IBM Security Verify Information Queue?
The affected version of IBM Security Verify Information Queue is 10.0.2.
How can I find more information about CVE-2022-35287?
You can find more information about CVE-2022-35287 on IBM X-Force ID: 230817 and the IBM Support page.
- collector/nvd-index
- agent/references
- agent/type
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/severity
- agent/author
- agent/remedy
- agent/last-modified-date
- agent/description
- agent/softwarecombine
- agent/tags
- agent/event
- collector/ibm-support
- source/IBM
- agent/software-canonical-lookup
- vendor/ibm
- canonical/ibm security verify information queue
- version/ibm security verify information queue/10.0.2