CVE-2022-0144 — Vulnetix

Try Vulnetix Request Demo

CVE-2022-0144 PUBLISHED CVSS 7.099999904632568 HIGH

De multiples vulnérabilités ont été découvertes dans les produits IBM. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, une élévation de privilèges et un déni de service à distance.

EPSS 0.18% · 39.4th percentile

Risk Scores

CVSS v3.0

7.099999904632568

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

EPSS Score

0.18%

39.4th percentile

Affected Products

Vendor	Product	Versions
IBM	Cognos Analytics
IBM	Sterling
npm	shelljs	0
IBM	QRadar
shelljs	shelljs/shelljs	unspecified
shelljs_project	shelljs	0

Timeline

Jan 11, 2022 CVE Published
Jan 11, 2022 PoC Published
Feb 8, 2022 EPSS Score
Feb 9, 2022 CVE Updated
Apr 1, 2022 EPSS Score
May 23, 2022 EPSS Score
Jul 15, 2022 EPSS Score
Sep 1, 2022 PoC Published
Sep 4, 2022 EPSS Score
Oct 26, 2022 EPSS Score
Dec 17, 2022 EPSS Score
Feb 7, 2023 EPSS Score

References

https://www.ibm.com/support/pages/node/7173631 advisory
https://www.ibm.com/support/pages/node/7174016 advisory
https://www.ibm.com/support/pages/node/7174015 advisory
https://www.ibm.com/support/pages/node/7173632 advisory
https://www.ibm.com/support/pages/node/7172691 advisory
https://www.ibm.com/support/pages/node/7172692 advisory
https://www.ibm.com/support/pages/node/7173592 advisory
https://www.ibm.com/support/pages/node/7173866 advisory
https://huntr.dev/bounties/50996581-c08e-4eed-a90e-c0bac082679c url
https://github.com/shelljs/shelljs/commit/d919d22dd6de385edaa9d90313075a77f74b338c url
https://nvd.nist.gov/vuln/detail/CVE-2022-0144 advisory
https://github.com/shelljs/shelljs package

Open in Interactive Console →