CVE-2022-22493

State: PUBLISHED · Published: 2022-10-07 · Updated: 2024-09-16 · Assigner: ibm

Description

IBM WebSphere Automation for Cloud Pak for Watson AIOps 1.4.2 is vulnerable to cross-site request forgery, caused by improper cookie attribute setting. IBM X-Force ID: 226449.

CWE

(none)

Affected

IBM / WebSphere Automation for Cloud Pak for Watson AIOps — v=1.4.2 [affected]

CVSS

3.0 score=3.5 severity=LOW CVSS:3.0/AV:N/A:N/UI:R/PR:L/S:U/AC:L/I:L/C:N/RL:O/E:U/RC:C

References

https://www.ibm.com/support/pages/node/6826727
https://exchange.xforce.ibmcloud.com/vulnerabilities/226449 vdb-entry

Source

cvelistV5-main/cves/2022/22xxx/CVE-2022-22493.json