CVE-2018-1362

3 documents3 sources
Severity
5.0MEDIUM
EPSS
0.3%
top 51.03%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
IBM Cram Social Program ManagementIBM Curam Social Program Management
Timeline
PublishedJan 19
Latest updateMay 13

Description

IBM Curam Social Program Management 6.0.5, 6.1.1, 6.2.0, and 7.0.1 within Citizen Portal could allow an authenticated user to withdraw other user's submitted applications from the system and possibly obtain privileges. IBM X-Force ID: 137380.

CVSS vector

CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:LExploitability: 1.6 | Impact: 3.4

Affected Packages2 packages

CVEListV5ibm/cram_social_program_management4 versions+3

🔴Vulnerability Details

2
GHSA
GHSA-vgvv-6xqf-59jv: IBM Curam Social Program Management 62022-05-13
CVEList
CVE-2018-1362: IBM Curam Social Program Management 62018-01-19