Lucene search
HistoryOct 07, 2022 - 5:15 p.m.
CVE-2022-22493
ibm
websphere
cloud pak
watson
aiops
csrf
cookie attribute
x-force id
226449
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
29.5%
IBM WebSphere Automation for Cloud Pak for Watson AIOps 1.4.2 is vulnerable to cross-site request forgery, caused by improper cookie attribute setting. IBM X-Force ID: 226449.
Affected configurations
Node
ibmwebsphere_automation_for_ibm_cloud_pak_for_watson_aiopsRange<1.4.3
linuxlinux_kernelMatch-
| Vendor | Product | Version | CPE |
|---|---|---|---|
| ibm | websphere_automation_for_ibm_cloud_pak_for_watson_aiops | * | cpe:2.3:a:ibm:websphere_automation_for_ibm_cloud_pak_for_watson_aiops:*:*:*:*:*:*:*:* |
| linux | linux_kernel | - | cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:* |
Related
prion
prion
Cross site request forgery (csrf)
2022-10-07 17:15:00
ibm
ibm
cvelist
cvelist
CVE-2022-22493
2022-10-07 17:00:27
cve
cve
CVE-2022-22493
2022-10-07 17:15:10
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
29.5%
Related for NVD:CVE-2022-22493