CVE-2022-22423

Published: Sep 23, 2022Modified: May 22, 2025

5.5

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Exploitability: 1.8 / Impact: 3.6

Source: NVD

Description

IBM Common Cryptographic Architecture (CCA 5.x MTM for 4767 and CCA 7.x MTM for 4769) could allow a local user to cause a denial of service due to improper input validation. IBM X-Force ID: 223596.

Affected (2)

Products: Ibm: Common Cryptographic Architecture

Ibm

1 product

Common Cryptographic Architecture

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Ibm Common Cryptographic Architecture	From 5.0.0 to 5.7.12

Configuration B

1 vulnerable · 4 platform

Vulnerable Software	Affected Versions
Ibm Common Cryptographic Architecture	From 7.0.0 to 7.3.44

Running on/with	Platform Versions
Ibm Aix	All versions
Ibm I	All versions
Ibm Powerlinux	All versions
Linux Linux Kernel	All versions

Related CWEs

CWE-20

Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References (4)

https://exchange.xforce.ibmcloud.com/vulnerabilities/223596

Source: psirt@us.ibm.com

VDB EntryVendor Advisory

https://www.ibm.com/support/pages/node/6695893

Source: psirt@us.ibm.com

PatchVendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/223596

Source: af854a3a-2127-422b-91ae-364da2661108

VDB EntryVendor Advisory

https://www.ibm.com/support/pages/node/6695893

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

Timeline

No history available yet.