CVE-2022-43916

📊 6.8 MEDIUM⚡ 0.0%🎯 0 exploits

📅 Published Jan 30, 2025

📋 Status: Analyzed

IBM App Connect Enterprise Certified Container 7.1, 7.2, 8.0, 8.1, 8.2, 9.0, 9.1, 9.2, 10.0, 10.1, 11.0, 11.1, 11.2, 11.3, 11.4, 11.5, 11.6, 12.0, 12.1, 12.2, 12.3, 12.4, 12.5, 12.6, and 12.7 Pods do not restrict network egress for Pods that are used for internal infrastructure.

CVSS v3.1 • [email protected]

🎯 Affected Products & Systems

2 product configurations affected

Filter by type:

Type	Vendor	Product	Version Range	Status	CPE String
📱App	ibm	app connect enterprise certified container	≥ 7.1 ∧ < 12.8	Vulnerable	cpe:2.3:a:ibm:app_connect_enterprise_certified_container::::::::
💻OS	redhat	openshift	All versions	Not Vulnerable	cpe:2.3:o:redhat:openshift:-:::::::*

📱

ibm / app connect enterprise certified container

Application

Vulnerable

Version: ≥ 7.1 ∧ < 12.8

CPE:

cpe:2.3:a:ibm:app_connect_enterprise_certified_container:*:*:*:*:*:*:*:*

💻

redhat / openshift

Operating System

Safe

Version: All versions

CPE:

cpe:2.3:o:redhat:openshift:-:*:*:*:*:*:*:*

Metrics

6.8 MEDIUMCVSS v3.1[email protected]

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N

Attack Vector:

NETWORK

Complexity:

HIGH

Privileges:

LOW

User Interaction:

NONE

Confidentiality:

HIGH

Integrity:

HIGH

Availability:

NONE

Scope:

UNCHANGED

🔍 Technical Details

Analysis Status

Analyzed

CVSS Details

6.8 (MEDIUM)v3.1

Source: [email protected]

EPSS Details

0.0% (Minimal)9.8th percentile

Last updated: Nov 1, 2025

Exploitation probability within 30 days

Published Date

Jan 30, 2025 (9 months ago)

Last Modified

Aug 13, 2025 (2 months ago)

Security Weaknesses1

CWE-923

References2

NVDgeneral