IBM WebSphere Automation for IBM Cloud Pak for Watson AIOps information disclosure
CVE-2022-43901

5.7MEDIUM

Key Information:

Vendor
IBM
Vendor
CVE Published:
1 December 2022

Summary

IBM WebSphere Automation for IBM Cloud Pak for Watson AIOps 1.4.3 could disclose sensitive information. An authenticated local attacker could exploit this vulnerability to possibly gain information to other IBM WebSphere Automation for IBM Cloud Pak for Watson AIOps components. IBM X-Force ID: 240829.

Affected Version(s)

WebSphere Automation for Cloud Pak for Watson AIOps 1.4.3

References

CVSS V3.1

Score:
5.7
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Adjacent Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.