Lucene search

Cloud Pak For Multicloud Management Security Vulnerabilities

cve

CVE-2022-42438

IBM Cloud Pak for Multicloud Management Monitoring 2.0 and 2.3 allows users without admin roles access to admin functions by specifying direct URL paths. IBM X-Force ID: ...

8.8CVSS

8.2AI Score

0.001EPSS

2023-02-08 07:15 PM

cve

CVE-2021-38941

IBM CloudPak for Multicloud Monitoring 2.0 and 2.3 has a few containers running in privileged mode which is vulnerable to host information leakage or destruction if unauthorized access to these containers could execute arbitrary commands. IBM X-Force ID:...

8.1CVSS

7.8AI Score

0.001EPSS

2022-06-30 05:15 PM

cve

CVE-2020-4765

IBM Cloud Pak for Multicloud Management prior to 2.3 allows web pages to be stored locally which can be read by another user on the system. IBM X-Force ID:...

3.3CVSS

3.5AI Score

0.0004EPSS

2021-05-19 08:15 PM

cve

CVE-2021-20341

IBM Cloud Pak for Multicloud Management Monitoring 2.2 returns potentially sensitive information in headers which could lead to further attacks against the system. IBM X-Force ID:...

5.3CVSS

5AI Score

0.001EPSS

2021-03-09 03:15 PM