IBM Spectrum Protect Operations Center 8.1.12 and 8.1.13 could allow a local attacker to obtain sensitive information, caused by plain text user account passwords potentially being stored in the browser's application command history. By accessing browser history, an attacker could exploit this vulnerability to obtain other user accounts' passwords. IBM X-Force ID: 226322.
References
Link | Resource |
---|---|
https://exchange.xforce.ibmcloud.com/vulnerabilities/226322 | VDB Entry Vendor Advisory |
https://www.ibm.com/support/pages/node/6586314 | Patch Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Information
Published : 2022-05-17 09:15
Updated : 2022-05-25 07:51
NVD link : CVE-2022-22484
Mitre link : CVE-2022-22484
JSON object : View
CWE
CWE-312
Cleartext Storage of Sensitive Information
Products Affected
ibm
- aix
- spectrum_protect
linux
- linux_kernel
microsoft
- windows