CVE-2022-22318

Summary

IBM Curam Social Program Management 8.0.0 and 8.0.1 does not invalidate session after logout which could allow an authenticated user to impersonate another user on the system.

Affected Software

VendorProductVersion RangeStatus
IBMCuram Social Program Management8.0.0affected
IBMCuram Social Program Management8.0.1affected

Weaknesses

  • Gain Privileges

ADP Enrichment

CVE Program Container

Additional References

References