IBM API Connect SSRF 10.0.0-10.0.5 & 2018.4.1
CVE-2022-34350 Published on February 8, 2023
IBM API Connect security bypass
IBM API Connect 10.0.0.0 through 10.0.5.0, 10.0.1.0 through 10.0.1.7, and 2018.4.1.0 through 2018.4.1.20 is vulnerable to External Service Interaction attack, caused by improper validation of user-supplied input. A remote attacker could exploit this vulnerability to induce the application to perform server-side DNS lookups or HTTP requests to arbitrary domain names. By submitting suitable payloads, an attacker can cause the application server to attack other systems that it can interact with. IBM X-Force ID: 230264.
Vulnerability Analysis
CVE-2022-34350 is exploitable with network access, and does not require authorization privileges or user interaction. This vulnerability is considered to have a low attack complexity. The potential impact of an exploit of this vulnerability is considered to have no impact on confidentiality, with no impact on integrity, and no impact on availability.
Products Associated with CVE-2022-34350
You can be notified by email with stack.watch whenever vulnerabilities like CVE-2022-34350 are published in IBM Api Connect:
Affected Versions
IBM API Connect:- Version 10.0.0.0 and below 10.0.5.0 is affected.
- Version 10.0.1.0 and below 10.0.1.7 is affected.
- Version 2018.4.1.0 and below 2018.4.1.20 is affected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.