IBM Security Identity Manager (IBM Security Verify Password Synchronization Plug-in for Windows AD 10.x) is vulnerable to a denial of service, caused by a heap-based buffer overflow in the Password Synch Plug-in. An authenticated attacker could exploit this vulnerability to cause a denial of service. IBM X-Force ID: 217369.
Microsoft
CVE-2022-22323
IBM Security Identity Manager (IBM Security Verify Password Synchronization Plug-in for Windows AD 10.x) is vulnerable to a denial of service, caused by a heap-based buffer overflow in the Password Synch Plug-in. An authenticated attacker could exploit this vulnerability to cause a denial of service. IBM X-Force ID: 218379.
CVE-2022-22023
Windows Portable Device Enumerator Service Security Feature Bypass Vulnerability.
CVE-2022-22025
Windows Internet Information Services Cachuri Module Denial of Service Vulnerability.
CVE-2022-22026
Windows CSRSS Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-22047, CVE-2022-22049.
CVE-2022-22027
Windows Fax Service Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-22024.