CVE-2022-38383
4
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Summary
IBM Cloud Pak for Security (CP4S) 1.10.0.0 through 1.10.11.0 and IBM QRadar Software Suite 1.10.12.0 through 1.10.21.0 allows web pages to be stored locally which can be read by another user on the system. IBM X-Force ID: 233673.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| IBM | Cloud Pak for Security | 1.10.0.0 <= 1.10.11.0 | affected |
| IBM | QRadar Suite Software | 1.10.12.0 <= 1.10.21.0 | affected |
Weaknesses
- CWE-525: CWE-525 Information Exposure Through Browser Caching
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: total
CVE Program Container
Additional References
- https://www.ibm.com/support/pages/node/7158986
- https://exchange.xforce.ibmcloud.com/vulnerabilities/233673
References
- https://www.ibm.com/support/pages/node/7158986
- https://exchange.xforce.ibmcloud.com/vulnerabilities/233673
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.