CVE-2022-22318
published 2022-06-20CVE-2022-22318: IBM Curam Social Program Management 8.0.0 and 8.0.1 does not invalidate session after logout which could allow an authenticated user to impersonate another…
critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
IBM Curam Social Program Management 8.0.0 and 8.0.1 does not invalidate session after logout which could allow an authenticated user to impersonate another user on the system.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ibm | curam_social_program_management | — | — |
| ibm | curam_social_program_management | — | — |