February 17, 2025
Proactive Defense: The Importance of Incident Response Planning in Cybersecurity
Rewterz Threat Alert – AsyncRAT – Active IOCs
December 16, 2022Rewterz Threat Alert – GandCrab Ransomware – Active IOCs
December 16, 2022Rewterz Threat Alert – AsyncRAT – Active IOCs
December 16, 2022Rewterz Threat Alert – GandCrab Ransomware – Active IOCs
December 16, 2022
Severity
Medium
Analysis Summary
CVE-2022-4497
IBM Spectrum Protect Plus 10.1.0 through 10.1.12 discloses sensitive information due to unencrypted data being used in the communication flow between Spectrum Protect Plus vSnap and its agents. An attacker could obtain information using main in the middle techniques.
Impact
Information Disclosure
Indicators Of Compromise
CVE
- CVE-2022-4497
Affected Vendors
IBM
Affected Products
- IBM Spectrum Protect Plus 10.1.0
- IBM Spectrum Protect Plus 10.1.12
Remediation
Refer to IBM Security Advisory for patch, upgrade or suggested workaround information.