Curam Social Program Management Security Vulnerabilities and Issues — Curam Social Program Management CVE List

Lucene search

IbmCuram Social Program Management

3 matches found

CVE•added 2022/06/20 5:15 p.m.•65 views

CVE-2022-22317

IBM Curam Social Program Management 8.0.0 and 8.0.1 does not invalidate session after logout which could allow an authenticated user to impersonate another user on the system. IBM X-Force ID: 218281.

9.8CVSS8.8AI score0.00113EPSS

CVE•added 2022/06/20 5:15 p.m.•65 views

CVE-2022-22318

IBM Curam Social Program Management 8.0.0 and 8.0.1 does not invalidate session after logout which could allow an authenticated user to impersonate another user on the system.

9.8CVSS9.2AI score0.00113EPSS

CVE•added 2017/03/31 6:59 p.m.•37 views

CVE-2016-6111

IBM Curam Social Program Management 6.0 and 7.0 are vulnerable to a denial of service, caused by an XML External Entity Injection (XXE) error when processing XML data. A remote attacker could exploit this vulnerability to expose highly sensitive information or consume all available memory resources...

9.1CVSS9.2AI score0.00407EPSS