CVE-2022-22321

MEDIUM Year: 2022
CVSS v3 Score
5.1
Medium
CVSS v2 Score
2.1
Low
Weakness Type
CWE-326
View all →

Vulnerability Description

IBM MQ Appliance 9.2 CD and 9.2 LTS local messaging users stored with a password hash that provides insufficient protection. IBM X-Force ID: 218368.

Related Vulnerabilities

CVE-2022-22453

MEDIUM
CVSS:5.1(Medium)

IBM Security Verify Identity Manager 10.0 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 224919.

CWE-3262022

CVE-2022-41209

MEDIUM
CVSS:5.2(Medium)

SAP Customer Data Cloud (Gigya mobile app for Android) - version 7.4, uses encryption method which lacks proper diffusion and does not hide the patterns well. This can lead to information disclosure. ...

CWE-3262022

CVE-2015-8085

MEDIUM
CVSS:4.9(Medium)

Huawei AR routers with software before V200R007C00SPC100; Quidway S9300 routers with software before V200R009C00; S12700 routers with software before V200R008C00SPC500; S9300, Quidway S5300, and S5300...

CWE-3262015

CVE-2015-8086

MEDIUM
CVSS:4.9(Medium)

Huawei AR routers with software before V200R007C00SPC100; Quidway S9300 routers with software before V200R009C00; S12700 routers with software before V200R008C00SPC500; S9300, Quidway S5300, and S5300...

CWE-3262015

CVE-2021-20406

MEDIUM
CVSS:4.9(Medium)

IBM Security Verify Information Queue 1.0.6 and 1.0.7 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 196184.

CWE-3262021

CVE-2014-0841

MEDIUM
CVSS:5.3(Medium)

IBM Rational Focal Point 6.4.0, 6.4.1, 6.5.1, 6.5.2, and 6.6.0 use a weak algorithm to hash passwords, which makes it easier for context-dependent attackers to obtain cleartext values via a brute-forc...

CWE-3262014