CVE-2022-22447: IBM Disconnected Log Collector information disclosure

Q: What is the vulnerability ID?

The vulnerability ID is CVE-2022-22447.

Q: What is the severity of CVE-2022-22447?

The severity of CVE-2022-22447 is high, with a severity value of 7.5.

Q: Which software versions are affected by CVE-2022-22447?

IBM Disconnected Log Collector versions 1.0 through 1.8.2 are affected by CVE-2022-22447.

Q: What is the potential impact of CVE-2022-22447?

CVE-2022-22447 could disclose unintended information due to potential security misconfigurations.

Q: Where can I find more information about CVE-2022-22447?

You can find more information about CVE-2022-22447 at the IBM X-Force ID 224648 and the following IBM support pages: [link1], [link2].

Published Sep 29, 2023

Updated

IBM Disconnected Log Collector 1.0 through 1.8.2 is vulnerable to potential security misconfigurations that could disclose unintended information. IBM X-Force ID: 224648.

Other sources

IBM Disconnected Log Collector is vulnerable to potential security misconfigurations that could disclose unintended information.

Affected Software

2 affected components

IBM Disconnected Log Collector>=1.0<1.8.3

IBM Disconnected Log Collector<=v1.0 - v1.8.2

Event History

Sep 29, 2023

CVE Published

12:00 AM

Oct 3, 2023

CVE Published

via MITRE·11:17 PM

Data Sourced

via MITRE·11:17 PM

DescriptionSeverityWeakness

Parent advisories

This vulnerability appears in the following advisories.

IBM-7042313

Frequently Asked Questions

What is the vulnerability ID?

The vulnerability ID is CVE-2022-22447.

What is the severity of CVE-2022-22447?

The severity of CVE-2022-22447 is high, with a severity value of 7.5.

Which software versions are affected by CVE-2022-22447?