March 11, 2025
Proactive Defense: The Importance of Incident Response Planning in Cybersecurity
Rewterz Threat Advisory – CVE-2022-22414 – IBM Robotic Process Automation Vulnerability
June 21, 2022Rewterz Threat Alert – Quasar RAT – Active IOCs
June 21, 2022Rewterz Threat Advisory – CVE-2022-22414 – IBM Robotic Process Automation Vulnerability
June 21, 2022Rewterz Threat Alert – Quasar RAT – Active IOCs
June 21, 2022
Severity
Medium
Analysis Summary
CVE-2022-22318
IBM Curam Social Program Management 8.0.0 and 8.0.1 does not invalidate session after logout which could allow an authenticated user to impersonate another user on the system.
CVE-2022-22317
IBM Curam Social Program Management 8.0.0 and 8.0.1 does not invalidate session after logout which could allow an authenticated user to impersonate another user on the system.
Impact
- Privilege Escalation
Indicators Of Compromise
CVE
- CVE-2022-22318
- CVE-2022-22317
Affected Vendors
IBM
Affected Products
- IBM Curam Social Program Management 8.0.0
- IBM Curam Social Program Management 8.0.1
Remediation
Refer to IBM Security Bulletin for patch, upgrade or suggested workaround information.