IBM Spectrum Protect Operations Center 8.1.12 and 8.1.13 could allow a local attacker to obtain sensitive information, caused by plain text user account passwords potentially being stored in the browser's application command history. By accessing browser history, an attacker could exploit this vulnerability to obtain other user accounts' passwords. IBM X-Force ID: 226322.
References
Link | Resource |
---|---|
https://exchange.xforce.ibmcloud.com/vulnerabilities/226322 | VDB Entry Vendor Advisory |
https://www.ibm.com/support/pages/node/6586314 | Patch Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
History
No history.
Information
Published : 2022-05-17 16:15
Updated : 2024-02-28 19:09
NVD link : CVE-2022-22484
Mitre link : CVE-2022-22484
CVE.ORG link : CVE-2022-22484
JSON object : View
Products Affected
linux
- linux_kernel
ibm
- aix
- spectrum_protect
microsoft
- windows
CWE
CWE-312
Cleartext Storage of Sensitive Information