{"id":2142,"date":"2025-04-29T06:35:13","date_gmt":"2025-04-29T06:35:13","guid":{"rendered":"http:\/\/localhost\/?p=2142"},"modified":"2025-04-29T06:35:13","modified_gmt":"2025-04-29T06:35:13","slug":"security-bulletin-ibm-datapower-gateway-does-not-force-a-gateway-peering-password-change","status":"publish","type":"post","link":"https:\/\/zero.redgem.net\/?p=2142","title":{"rendered":"Security Bulletin: IBM DataPower Gateway does not force a Gateway Peering password change"},"content":{"rendered":"
\n

Vulnerability Details<\/h2>\n
\n

Basic Information<\/h3>\n\n\n\n\n\n\n
Title<\/th>\nSecurity Bulletin: IBM DataPower Gateway does not force a Gateway Peering password change<\/td>\n<\/tr>\n
Type<\/th>\nibm<\/td>\n<\/tr>\n
Published<\/th>\n2025-04-29T02:23:51<\/td>\n<\/tr>\n
Last Seen<\/th>\n2025-04-29T11:06:02<\/td>\n<\/tr>\n
CVSS Score<\/th>\n8.8 (HIGH)<\/td>\n<\/tr>\n<\/table><\/div>\n
\n

CVSS v3 Details<\/h3>\n\n\n\n\n\n\n\n\n\n
Attack Vector<\/th>\nNETWORK<\/td>\n<\/tr>\n
Attack Complexity<\/th>\nLOW<\/td>\n<\/tr>\n
Privileges Required<\/th>\nLOW<\/td>\n<\/tr>\n
User Interaction<\/th>\nNONE<\/td>\n<\/tr>\n
Scope<\/th>\nUNCHANGED<\/td>\n<\/tr>\n
Confidentiality Impact<\/th>\nHIGH<\/td>\n<\/tr>\n
Integrity Impact<\/th>\nHIGH<\/td>\n<\/tr>\n
Availability Impact<\/th>\nHIGH<\/td>\n<\/tr>\n<\/table><\/div>\n
\n

CVE Information<\/h3>\n\n\n\n\n
CVE IDs<\/th>\nCVE-2022-31776<\/td>\n<\/tr>\n
CWE<\/th>\n<\/td>\n<\/tr>\n
Bulletin Family<\/th>\nsoftware<\/td>\n<\/tr>\n<\/table><\/div>\n
\n

Description<\/h3>\n
\n ## Summary<\/p>\n

The DataPower UI does not notify customers of any gateway-peering instance that uses the system default password. The UI will now warn if the password is not changed.<\/p>\n

## Vulnerability Details<\/p>\n

**CVEID:**CVE-2022-31776
\n**DESCRIPTION:** IBM DataPower Gateway 10.0.2.0 through 10.0.4.0, 10.0.1.0 through 10.0.1.8, 10.5.0.0, and 2018.4.1.0 through 2018.4.1.21 is vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other attacks. IBM X-Force ID: 228433.
\nCVSS Base score: 6.5
\nCVSS Temporal Score: See: https:\/\/exchange.xforce.ibmcloud.com\/vulnerabilities\/228433 for the current score.
\nCVSS Vector: (CVSS:3.0\/AV:N\/AC:L\/PR:N\/UI:N\/S:U\/C:L\/I:L\/A:N)<\/p>\n

## Affected Products and Versions<\/p>\n

Affected Product(s) | Version(s)
\n—|—
\nIBM DataPower Gateway 10.5.0 | 10.5.0.0
\nIBM DataPower Gateway V10CD | 10.0.2.0 – 10.0.4.0
\nIBM DataPower Gateway 10.0.1 | 10.0.1.0 – 10.0.1.8
\nIBM DataPower Gateway | 2018.4.1.0 – 2018.4.1.21 <\/p>\n

## Remediation\/Fixes<\/p>\n

Affected Product | Fixed in version | APAR
\n—|—|—
\nIBM DataPower Gateway 10.5.0.0 | 10.5.0.1 | IT41462
\nIBM DataPower Gateway V10CD | 10.5.0.1 | IT41462
\nIBM DataPower Gateway 10.0.1 | 10.5.0.1 | IT41462
\nIBM DataPOwer Gateway 2018.4.1 | 10.5.0.1 | IT41462 <\/p>\n

Customers using IBM DataPower Gateway 10.0.1 or 2108.4.1 may obtain the fix by upgrading to version 10.5.0.1; The fix will be available in a future fixpack on those releases.<\/p>\n

## Workarounds and Mitigations<\/p>\n

None<\/p>\n

##\n <\/p><\/div>\n<\/p><\/div>\n

\n

Impact Assessment<\/h3>\n\n\n\n
Base Score<\/th>\n8.8<\/td>\n<\/tr>\n
Severity<\/th>\nHIGH<\/td>\n<\/tr>\n<\/table><\/div>\n
\n

View full CVE details<\/a><\/p>\n<\/p><\/div>\n<\/div>\n