CVE-2022-22317
published 2022-06-20CVE-2022-22317: IBM Curam Social Program Management 8.0.0 and 8.0.1 does not invalidate session after logout which could allow an authenticated user to impersonate another…
critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
IBM Curam Social Program Management 8.0.0 and 8.0.1 does not invalidate session after logout which could allow an authenticated user to impersonate another user on the system. IBM X-Force ID: 218281.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ibm | curam_social_program_management | — | — |
| ibm | curam_social_program_management | — | — |