CVE-2022-41732

Severity

5.5MEDIUM

EPSS

0.0%

top 88.88%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Timeline

PublishedNov 28

Description

IBM Maximo Mobile 8.7 and 8.8 stores user credentials in plain clear text which can be read by a local user. IBM X-Force ID: 237407.

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 2.5 | Impact: 3.6

▶CVEListV5ibm/maximo_mobile8.7, 8.8+1

GHSA

GHSA-2q27-4jj5-ppf3: IBM Maximo Mobile 8↗2022-11-28

▶

CVEList

IBM Maximo information disclosure↗2022-11-28

▶