2 matches found
CVE-2022-22332
IBM Sterling Partner Engagement Manager 6.2.0 is affected by an impersonation vulnerability caused by a missing revocation mechanism for JWT tokens. The issue enables an attacker to impersonate another user and is documented in multiple sources (IBM bulletin, NVD entry). Affected product: IBM Ste...
Security Bulletin: IBM Sterling Partner Engagement Manager is vulnerable to impersonation attack (CVE-2022-22332)
Summary IBM Sterling Partner Engagement Manager CVE-2022-22332 is vulnerable to impersonation attack due to weakness in the JWT token used as an authentication mechanism in the APIs. The issue has been addressed. Vulnerability Details CVEID: CVE-2022-22332 DESCRIPTION: IBM Sterling Partner...