IBM WebSphere Automation for IBM Cloud Pak for Watson AIOps information disclosure
CVE-2022-43901
5.7MEDIUM
Key Information:
- Vendor
- IBM
- Vendor
- CVE Published:
- 1 December 2022
Summary
IBM WebSphere Automation for IBM Cloud Pak for Watson AIOps 1.4.3 could disclose sensitive information. An authenticated local attacker could exploit this vulnerability to possibly gain information to other IBM WebSphere Automation for IBM Cloud Pak for Watson AIOps components. IBM X-Force ID: 240829.
Affected Version(s)
WebSphere Automation for Cloud Pak for Watson AIOps 1.4.3
References
CVSS V3.1
Score:
5.7
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Adjacent Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved