Remote code execution in IBM Spectrum Copy Data Management
| Risk | High |
| Patch available | YES |
| Number of vulnerabilities | 1 |
| CVE-ID | CVE-2022-26520 |
| CWE-ID | CWE-20 |
| Exploitation vector | Network |
| Public exploit | N/A |
| Vulnerable software |
IBM Spectrum Copy Data Management Server applications / Other server solutions |
| Vendor | IBM Corporation |
Security Bulletin
This security bulletin contains one high risk vulnerability.
1) Input validation error
EUVDB-ID: #VU62716
Risk: High
CVSSv4.0: 8.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]
CVE-ID: CVE-2022-26520
CWE-ID:
CWE-20 - Improper input validation
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to create arbitrary files on the system.
The vulnerability exists due to insufficient validation of user-supplied input when handling jdbc URL or its properties. A remote attacker can call java.util.logging.FileHandler to write to arbitrary files through the loggerFile and loggerLevel connection properties.
Successful exploitation of the vulnerability may allow an attacker to create and executable arbitraru JSP file under a Tomcat web root.
MitigationInstall update from vendor's website.
Vulnerable software versionsIBM Spectrum Copy Data Management: 2.2.0 - 2.2.15
CPE2.3- cpe:2.3:a:ibm_corporation:ibm_spectrum_copy_data_management:2.2.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm_corporation:ibm_spectrum_copy_data_management:2.2.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm_corporation:ibm_spectrum_copy_data_management:2.2.2:*:*:*:*:*:*:*
http://www.ibm.com/blogs/psirt/security-bulletin-vulnerability-in-postgresql-may-affect-ibm-spectrum-copy-data-management/
http://www.ibm.com/support/pages/node/6594199
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
