{"id":"CVE-2022-43922","details":"IBM App Connect Enterprise Certified Container 4.1, 4.2, 5.0, 5.1, 5.2, 6.0, 6.1, and 6.2 could disclose sensitive information to an attacker due to a weak hash of an API Key in the configuration.  IBM X-Force ID:  241583.","modified":"2026-05-28T04:08:17.001174238Z","published":"2023-02-01T18:15:10.453Z","database_specific":{"unresolved_ranges":[{"vendor_product":"ibm:app_connect_enterprise_certified_container","source":"CPE_STRING","extracted_events":[{"last_affected":"4.2"},{"last_affected":"5.0"},{"last_affected":"5.1"},{"last_affected":"5.2"},{"last_affected":"6.0"},{"last_affected":"6.1"},{"last_affected":"6.2"}],"cpes":["cpe:2.3:a:ibm:app_connect_enterprise_certified_container:4.2:*:*:*:*:*:*:*","cpe:2.3:a:ibm:app_connect_enterprise_certified_container:5.0:*:*:*:lts:*:*:*","cpe:2.3:a:ibm:app_connect_enterprise_certified_container:5.1:*:*:*:*:*:*:*","cpe:2.3:a:ibm:app_connect_enterprise_certified_container:5.2:*:*:*:*:*:*:*","cpe:2.3:a:ibm:app_connect_enterprise_certified_container:6.0:*:*:*:*:*:*:*","cpe:2.3:a:ibm:app_connect_enterprise_certified_container:6.1:*:*:*:*:*:*:*","cpe:2.3:a:ibm:app_connect_enterprise_certified_container:6.2:*:*:*:*:*:*:*"]}]},"references":[{"type":"ADVISORY","url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/241583"},{"type":"FIX","url":"https://www.ibm.com/support/pages/node/6857807"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/openshift/origin","events":[{"introduced":"0"},{"last_affected":"b4261e07eda19d9c42aa9d1c748c34f8cba09168"}],"database_specific":{"cpe":"cpe:2.3:a:ibm:app_connect_enterprise_certified_container:4.1:*:*:*:*:*:*:*","source":"CPE_STRING","extracted_events":[{"introduced":"0"},{"last_affected":"4.1"}]}}],"versions":["v4.1.0","v4.0.0-alpha.0","v3.11.0-alpha.0","v3.10.0-rc.0","v3.10.0-alpha.0","v3.9.0-alpha.4","v3.9.0-alpha.3","v3.9.0-alpha.2","v3.9.0-alpha.1","v3.8.0-alpha.1","v3.9.0-alpha.0","v3.8.0-alpha.0","v3.7.0-rc.0","v3.6.0-alpha.2","v3.6.0-alpha.1","v3.6.0-alpha.0","v1.5.0-alpha.3","v1.5.0-alpha.2","v1.5.0-alpha.1","v1.5.0-alpha.0","v1.4.0-alpha.1","v1.3.0","v1.4.0-alpha.0","v1.3.0-rc1","v1.3.0-alpha.3","v1.2.0-rc2","v1.3.0-alpha.1","v1.2.0-rc1","v1.3.0-alpha.0","v1.1.6","v1.1.5","v1.1.4","v1.1.3","v1.1.1","v1.1","v1.0.8","v1.0.7","v1.0.6","v1.0.5","v1.0.4","v1.0.3","v1.0.2","v1.0.1","v1.0.0"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-43922.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"}]}