CVE-2022-43901
5.7
CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Summary
IBM WebSphere Automation for IBM Cloud Pak for Watson AIOps 1.4.3 could disclose sensitive information. An authenticated local attacker could exploit this vulnerability to possibly gain information to other IBM WebSphere Automation for IBM Cloud Pak for Watson AIOps components. IBM X-Force ID: 240829.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| IBM | WebSphere Automation for Cloud Pak for Watson AIOps | 1.4.3 | affected |
Weaknesses
- CWE-200: CWE-200 Exposure of Sensitive Information to an Unauthorized Actor
ADP Enrichment
CVE Program Container
Additional References
- https://www.ibm.com/support/pages/node/6842605
- https://exchange.xforce.ibmcloud.com/vulnerabilities/240829
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
References
- https://www.ibm.com/support/pages/node/6842605
- https://exchange.xforce.ibmcloud.com/vulnerabilities/240829
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.