CVE-2022-22332
published 2022-04-01CVE-2022-22332: IBM Sterling Partner Engagement Manager 6.2.0 could allow an attacker to impersonate another user due to missing revocation mechanism for the JWT token. IBM…
high7.5CVSS 3.1
AVNACLPRNUINSUCNIHAN
IBM Sterling Partner Engagement Manager 6.2.0 could allow an attacker to impersonate another user due to missing revocation mechanism for the JWT token. IBM X-Force ID: 219131.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ibm | partner_engagement_manager | — | — |
| ibm | sterling_partner_engagement_manager | — | — |