CVE-2022-38383: IBM Cloud Pak for Security information disclosure
First published: Thu Jun 27 2024(Updated: )
IBM Cloud Pak for Security (CP4S) 1.10.0.0 through 1.10.11.0 and IBM QRadar Software Suite 1.10.12.0 through 1.10.21.0 allows web pages to be stored locally which can be read by another user on the system. IBM X-Force ID: 233673.
Credit: psirt@us.ibm.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| IBM Cloud Pak for Security | <=1.10.0.0 - 1.10.11.0 | |
| IBM QRadar Suite Software | <=1.10.12.0 - 1.10.21.0 | |
| IBM Cloud Pak for Security | >=1.10.0.0<=1.10.11.0 | |
| IBM QRadar Suite | >=1.10.12.0<=1.10.21.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- agent/weakness
- agent/references
- agent/title
- agent/type
- collector/ibm-support
- source/IBM
- agent/software-canonical-lookup
- agent/first-publish-date
- agent/description
- agent/softwarecombine
- agent/author
- agent/severity
- agent/event
- agent/tags
- agent/last-modified-date
- collector/mitre-cve
- source/MITRE
- collector/nvd-api
- source/NVD
- vendor/ibm
- canonical/ibm cloud pak for security
- version/ibm cloud pak for security/1.10.0.0 - 1.10.11.0
- canonical/ibm qradar suite software
- version/ibm qradar suite software/1.10.12.0 - 1.10.21.0
- version/ibm cloud pak for security/1.10.0.0
- version/ibm cloud pak for security/1.10.11.0
- canonical/ibm qradar suite
- version/ibm qradar suite/1.10.12.0
- version/ibm qradar suite/1.10.21.0