Rewterz Threat Advisory – CVE-2022-35714 – IBM Maximo Asset Management Vulnerability

August 29, 2022

Rewterz Threat Advisory – CVE-2022-2915 – SonicWall SMA100 appliance Vulnerability

August 29, 2022

Rewterz Threat Advisory – CVE-2022-31773 – IBM DataPower Gateway Vulnerability

August 29, 2022

Severity

High

Analysis Summary

CVE-2022-31773

IBM DataPower Gateway V10CD, 10.0.1, and 2018.4.1 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts.

Impact

Unauthorized Access

Indicators Of Compromise

CVE

CVE-2022-31773

Affected Vendors

IBM

Affected Products

IBM DataPower Gateway 2018.4.1.0
IBM DataPower Gateway 10.0.1.0
IBM DataPower Gateway 10.0.2.0
IBM DataPower Gateway 10.0.4.0

Remediation

Refer to IBM Security Advisory for patch, upgrade or suggested workaround information.

IBM Security Advisory

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Platform

Managed Security Services

Managed Penetration Testing

Assess

Transform

Train

Respond

Resources

GitHub Tools Deployed in CrazyHunter Ransomware Campaigns – Active IOCs

North Korean APT Kimsuky aka Black Banshee – Active IOCs

Sophisticated BPFDoor Malware Detected Targeting Linux Systems – Active IOCs

Threat Insights

About Us

Our Leadership

CSR

Connect with Us

Rewterz Threat Advisory – CVE-2022-35714 – IBM Maximo Asset Management Vulnerability

Rewterz Threat Advisory – CVE-2022-2915 – SonicWall SMA100 appliance Vulnerability

The Wait Is Over!

The Rewterz Annual Threat Intelligence Report 2024 is finally here.