CVE-2022-22484

IBM Spectrum Protect Operations Center 8.1.12 and 8.1.13 could allow a local attacker to obtain sensitive information, caused by plain text user account passwords potentially being stored in the browser's application command history. By accessing browser history, an attacker could exploit this vulnerability to obtain other user accounts' passwords. IBM X-Force ID: 226322.
References
Configurations

Configuration 1 (hide)

AND
cpe:2.3:a:ibm:spectrum_protect:*:*:*:*:*:*:*:*
OR cpe:2.3:o:ibm:aix:-:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

History

No history.

Information

Published : 2022-05-17 16:15

Updated : 2024-02-28 19:09


NVD link : CVE-2022-22484

Mitre link : CVE-2022-22484

CVE.ORG link : CVE-2022-22484


JSON object : View

Products Affected

linux

  • linux_kernel

ibm

  • aix
  • spectrum_protect

microsoft

  • windows
CWE
CWE-312

Cleartext Storage of Sensitive Information