Improper Access Control in IBM Navigator Mobile for Android Apps
CVE-2022-38388

5.5MEDIUM

Key Information:

Vendor: IBM
Status: Navigator Mobile
Vendor: CVE Published:; 11 October 2022

What is CVE-2022-38388?

The IBM Navigator Mobile app for Android versions 3.4.1.1 and 3.4.1.2 has a vulnerability that could enable local users to gain unauthorized access to sensitive information. This flaw arises from improper access control measures within the application, potentially allowing users with physical access to the device to exploit this weakness. Users are advised to update to the latest version and review security practices to protect sensitive data.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Navigator Mobile 3.4.1.1

Navigator Mobile 3.4.1.2

References

https://www.ibm.com/support/pages/node/6828469

https://exchange.xforce.ibmcloud.com/vulnerabilities/233968

vdb-entry

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

CVSS V3.0

Score:

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Oct 11, 2022
Vulnerability Reserved
Aug 16, 2022

JSON

IBM

What is CVE-2022-38388?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

Affected Version(s)

References

CVSS V3.1

CVSS V3.0

Timeline

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.