Curam Social Program Management@8.0.1 Security Vulnerabilities and Issues — Curam Social Program Management@8.0.1 CVE List

Lucene search

IbmCuram Social Program Management8.0.1

3 matches found

CVE•added 2022/06/20 5:15 p.m.•65 views

CVE-2022-22317

IBM Curam Social Program Management 8.0.0 and 8.0.1 does not invalidate session after logout which could allow an authenticated user to impersonate another user on the system. IBM X-Force ID: 218281.

9.8CVSS8.8AI score0.00113EPSS

CVE•added 2022/06/20 5:15 p.m.•65 views

CVE-2022-22318

IBM Curam Social Program Management 8.0.0 and 8.0.1 does not invalidate session after logout which could allow an authenticated user to impersonate another user on the system.

9.8CVSS9.2AI score0.00113EPSS

CVE•added 2022/04/11 7:15 p.m.•62 views

CVE-2021-39068

IBM Curam Social Program Management 8.0.1 and 7.0.11 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force I...

5.4CVSS5.2AI score0.00215EPSS