EUVD-2022-27505

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

IBM Sterling Partner Engagement Manager is vulnerable to cross-site request forgery allowing unauthorized actions.

Reporter	Title	Published	Views	Family All 10
IBM Security Bulletins	Security Bulletin: IBM Sterling Partner Engagement Manager is vulnerable to cross-site request forgery (CVE-2022-22359)	18 Jul 202211:43	–	ibm
ATTACKERKB	CVE-2022-22359	18 Jul 202200:00	–	attackerkb
Circl	CVE-2022-22359	19 Jul 202220:40	–	circl
CNNVD	IBM Sterling Partner Engagement Manager 跨站请求伪造漏洞	19 Jul 202200:00	–	cnnvd
CNVD	IBM Sterling Partner Engagement Manager Cross-Site Request Forgery Vulnerability	21 Jul 202200:00	–	cnvd
CVE	CVE-2022-22359	19 Jul 202216:25	–	cve
Cvelist	CVE-2022-22359	19 Jul 202216:25	–	cvelist
NVD	CVE-2022-22359	19 Jul 202217:15	–	nvd
OSV	CVE-2022-22359	19 Jul 202217:15	–	osv
Prion	Cross site request forgery (csrf)	19 Jul 202217:15	–	prion

[
  {
    "enisaIdVendor": [
      {
        "id": "e0f7a764-bcd7-3385-885f-e149f97c8402",
        "vendor": {
          "name": "IBM"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "3f2b8120-87f1-3907-814a-56c393487dbe",
        "product": {
          "name": "Sterling Partner Engagement Manager"
        },
        "product_version": "6.2"
      },
      {
        "id": "82637bc4-4503-3a29-93cd-12537bfc5828",
        "product": {
          "name": "Sterling Partner Engagement Manager on Cloud"
        },
        "product_version": "22.2"
      },
      {
        "id": "c7f0a312-dd83-36ec-95a2-45afb132cd12",
        "product": {
          "name": "Sterling Partner Engagement Manager"
        },
        "product_version": "6.1.2"
      }
    ]
  }
]

Source	Link
ibm	www.ibm.com/support/pages/node/6604987
exchange	www.exchange.xforce.ibmcloud.com/vulnerabilities/220652

03 Oct 2025 20:07Current

5Medium risk

Vulners AI Score5

CVSS 34.3

CVSS 3.16.5

EPSS0.0008