CVE-2022-22484
 
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
IBM Spectrum Protect Operations Center 8.1.12 and 8.1.13 could allow a local attacker to obtain sensitive information, caused by plain text user account passwords potentially being stored in the browser's application command history. By accessing browser history, an attacker could exploit this vulnerability to obtain other user accounts' passwords. IBM X-Force ID: 226322.
IBM Spectrum Protect Operations Center versiones 8.1.12 y 8.1.13, podría permitir a un atacante local obtener información confidencial, causada por las contraseñas de cuentas de usuario en texto plano potencialmente almacenadas en el historial de comandos de la aplicación del navegador. Al acceder al historial del navegador, un atacante podría explotar esta vulnerabilidad para obtener las contraseñas de otras cuentas de usuario. IBM X-Force ID: 226322
CVSS Scores
SSVC
- Decision:-
Timeline
- 2022-01-03 CVE Reserved
- 2022-05-17 CVE Published
- 2023-03-08 EPSS Updated
- 2024-09-16 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-312: Cleartext Storage of Sensitive Information
CAPEC
References (2)
URL | Tag | Source |
---|
URL | Date | SRC |
---|
URL | Date | SRC |
---|---|---|
https://www.ibm.com/support/pages/node/6586314 | 2022-05-25 |
URL | Date | SRC |
---|---|---|
https://exchange.xforce.ibmcloud.com/vulnerabilities/226322 | 2022-05-25 |
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
Ibm Search vendor "Ibm" | Spectrum Protect Search vendor "Ibm" for product "Spectrum Protect" | >= 8.1.12.000 < 8.1.14 Search vendor "Ibm" for product "Spectrum Protect" and version " >= 8.1.12.000 < 8.1.14" | - |
Affected
| in | Ibm Search vendor "Ibm" | Aix Search vendor "Ibm" for product "Aix" | - | - |
Safe
|
Ibm Search vendor "Ibm" | Spectrum Protect Search vendor "Ibm" for product "Spectrum Protect" | >= 8.1.12.000 < 8.1.14 Search vendor "Ibm" for product "Spectrum Protect" and version " >= 8.1.12.000 < 8.1.14" | - |
Affected
| in | Linux Search vendor "Linux" | Linux Kernel Search vendor "Linux" for product "Linux Kernel" | - | - |
Safe
|
Ibm Search vendor "Ibm" | Spectrum Protect Search vendor "Ibm" for product "Spectrum Protect" | >= 8.1.12.000 < 8.1.14 Search vendor "Ibm" for product "Spectrum Protect" and version " >= 8.1.12.000 < 8.1.14" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | - | - |
Safe
|