CVE-2022-22491

📊 5.5 MEDIUM⚡ 0.0%🎯 0 exploits

📅 Published Jan 9, 2025

📋 Status: Analyzed

IBM App Connect Enterprise Certified Container 7.1, 7.2, 8.0, 8.1, 8.2, 9.0, 9.1, 9.2, 10.0, 10.1, 11.0, 11.1, 11.2, 11.3, 11.4, 11.5, 11.6, 12.0, 12.1, 12.2, 12.3, and 12.4 operands running in Red Hat OpenShift do not restrict writing to the local filesystem, which may result in exhausting the available storage in a Pod, resulting in that Pod being restarted.

CVSS v3.1 • [email protected]

🎯 Affected Products & Systems

1 product configurations affected

Filter by type:

Type	Vendor	Product	Version Range	Status	CPE String
📱App	ibm	app connect enterprise certified container	≥ 7.0 ∧ ≤ 12.4	Vulnerable	cpe:2.3:a:ibm:app_connect_enterprise_certified_container::::::::

📱

ibm / app connect enterprise certified container

Application

Vulnerable

Version: ≥ 7.0 ∧ ≤ 12.4

CPE:

cpe:2.3:a:ibm:app_connect_enterprise_certified_container:*:*:*:*:*:*:*:*

Metrics

5.5 MEDIUMCVSS v3.1[email protected]

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Attack Vector:

LOCAL

Complexity:

LOW

Privileges:

LOW

User Interaction:

NONE

Confidentiality:

NONE

Integrity:

NONE

Availability:

HIGH

Scope:

UNCHANGED

🔍 Technical Details

Analysis Status

Analyzed

CVSS Details

5.5 (MEDIUM)v3.1

Source: [email protected]

EPSS Details

0.0% (Minimal)5.2th percentile

Last updated: Nov 1, 2025

Exploitation probability within 30 days

Published Date

Jan 9, 2025 (9 months ago)

Last Modified

Jun 20, 2025 (4 months ago)

Security Weaknesses2

CWE-770

References2

NVDgeneral