PT-2022-7698 · Ibm · Ibm App Connect Enterprise Certified Container
Published
2022-01-03
·
Updated
2025-06-20
·
CVE-2022-22491
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
IBM App Connect Enterprise Certified Container versions 7.1 through 12.4
Description
The issue is related to unrestricted resource allocation during file writing to the local filesystem, which can lead to a denial of service. This occurs because the operands do not restrict writing to the local filesystem, potentially exhausting the available storage in a pod and causing it to restart.
Recommendations
For IBM App Connect Enterprise Certified Container versions 7.1 through 12.4, consider restricting write access to the local filesystem to prevent storage exhaustion and potential pod restarts. As a temporary workaround, restrict access to the local filesystem until a patch is available.
Fix
Resource Exhaustion
Allocation of Resources Without Limits
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Ibm App Connect Enterprise Certified Container