{"vulnerability": "CVE-2022-2246", "sightings": [{"uuid": "3a926062-920a-4c9c-be76-c58ffdc94986", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-22466", "type": "seen", "source": "https://t.me/cibsecurity/72795", "content": "\u203c CVE-2022-22466 \u203c\n\nIBM Security Verify Governance 10.0 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data. IBM X-Force ID: 225222.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-24T00:37:49.000000Z"}, {"uuid": "d9e84f99-191e-49ea-989e-3f9021c9115c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-22462", "type": "seen", "source": "https://t.me/cibsecurity/56940", "content": "\u203c CVE-2022-22462 \u203c\n\nIBM Security Verify Governance, Identity Manager virtual appliance component 10.0.1 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 225078.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-01-27T00:33:52.000000Z"}, {"uuid": "845dee6f-2f66-48ba-b272-68bc07967f4e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-22465", "type": "seen", "source": "https://t.me/cibsecurity/45842", "content": "\u203c CVE-2022-22465 \u203c\n\nIBM Security Access Manager Appliance 10.0.0.0, 10.0.1.0, 10.0.2.0, and 10.0.3.0 could allow a local user to obtain elevated privileges due to improper access permissions. IBM X-Force ID: 225082.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-07-08T22:18:47.000000Z"}, {"uuid": "1641ff4d-0e44-445f-b5fc-1e97b94ddacf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-22464", "type": "seen", "source": "https://t.me/cibsecurity/45841", "content": "\u203c CVE-2022-22464 \u203c\n\nIBM Security Access Manager Appliance 10.0.0.0, 10.0.1.0, 10.0.2.0, and 10.0.3.0 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 225081.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-07-08T22:18:46.000000Z"}, {"uuid": "5b22fd9b-1ad0-4345-83b1-8d7574f5eaa9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-22463", "type": "seen", "source": "https://t.me/cibsecurity/45830", "content": "\u203c CVE-2022-22463 \u203c\n\nIBM Security Access Manager Appliance 10.0.0.0, 10.0.1.0, 10.0.2.0, and 10.0.3.0 is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database. IBM X-Force ID: 225079.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-07-08T22:18:32.000000Z"}, {"uuid": "5ce0de92-8b04-463e-9138-ed226d28c317", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-22460", "type": "seen", "source": "https://t.me/cibsecurity/46274", "content": "\u203c CVE-2022-22460 \u203c\n\nIBM Security Verify Identity Manager 10.0 contains sensitive information in the source code repository that could be used in further attacks against the system. IBM X-Force ID: 225013.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-07-14T22:32:52.000000Z"}, {"uuid": "268318d9-dcfe-4ff7-97e9-fa3fccbd1c88", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-2246", "type": "seen", "source": "https://t.me/cibsecurity/45334", "content": "\u203c CVE-2022-2246 \u203c\n\nPrototype Pollution in GitHub repository clever/underscore.deep prior to 0.5.3.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-06-29T00:36:24.000000Z"}]}