CVE-2022-22317

Summary

IBM Curam Social Program Management 8.0.0 and 8.0.1 does not invalidate session after logout which could allow an authenticated user to impersonate another user on the system. IBM X-Force ID: 218281.

Affected Software

VendorProductVersion RangeStatus
IBMCuram Social Program Management8.0.0affected
IBMCuram Social Program Management8.0.1affected

Weaknesses

  • Gain Privileges

ADP Enrichment

CVE Program Container

Additional References

References