Lucene search
China National Vulnerability DatabaseCNVD-2022-85417HistoryNov 18, 2022 - 12:00 a.m.
IBM Sterling Partner Engagement Manager Information Disclosure Vulnerability (CNVD-2022-85417)
2022-11-1800:00:00
China National Vulnerability Database
www.cnvd.org.cn
12
ibm sterling partner
information disclosure
vulnerability
automated management tool
sensitive information
encrypted storage
local data
confidential information
attack vulnerability
0.0004 Low
EPSS
Percentile
12.6%
An information disclosure vulnerability exists in IBM Sterling Partner Engagement Manager version 2.0, an automated management tool from International Business Machines Corporation (IBM). The vulnerability stems from inadequate protection of sensitive information and encrypted storage of locally stored customer data, which can be read by other users on the system. An attacker could exploit the vulnerability to read confidential information.
| CPE | Name | Operator | Version |
|---|---|---|---|
| ibm ibm sterling partner engagement manager | eq | 2.0 |
Related
cvelist
cvelist
ibm
ibm
nvd
nvd
CVE-2022-34354
2022-11-16 17:15:10
prion
prion
Code injection
2022-11-16 17:15:00
cve
cve
CVE-2022-34354
2022-11-16 17:15:10