← Back to CVEs
CVE-2022-43901
MEDIUM5.7
Description
IBM WebSphere Automation for IBM Cloud Pak for Watson AIOps 1.4.3 could disclose sensitive information. An authenticated local attacker could exploit this vulnerability to possibly gain information to other IBM WebSphere Automation for IBM Cloud Pak for Watson AIOps components. IBM X-Force ID: 240829.
CVE Details
CVSS v3.1 Score5.7
SeverityMEDIUM
CVSS VectorCVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Attack VectorADJACENT_NETWORK
ComplexityLOW
Privileges RequiredLOW
User InteractionNONE
Published12/1/2022
Last Modified11/21/2024
Sourcenvd
Honeypot Sightings0
Affected Products
ibm:websphere_automation_for_ibm_cloud_pak_for_watson_aiops
Weaknesses (CWE)
CWE-200CWE-668
References
https://exchange.xforce.ibmcloud.com/vulnerabilities/240829(psirt@us.ibm.com)
https://www.ibm.com/support/pages/node/6842605(psirt@us.ibm.com)
https://exchange.xforce.ibmcloud.com/vulnerabilities/240829(af854a3a-2127-422b-91ae-364da2661108)
https://www.ibm.com/support/pages/node/6842605(af854a3a-2127-422b-91ae-364da2661108)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.