Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2022-36777

IBM Cloud Pak for Security (CP4S) 1.10.0.0 through 1.10.11.0 and IBM QRadar Suite Software 1.10.12.0 through 1.10.16.0could allow an authenticated user to obtain sensitive version information that could aid in further attacks against the system. IBM X-Force ID: 233665.

Published

2023-11-22T19:15:07.813

Last Modified

2024-11-21T07:13:40.980

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 4.3 (MEDIUM)

Weaknesses

Type: Secondary
CWE-200
Type: Primary
NVD-CWE-noinfo

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	ibm	cloud_pak_for_security	≤ 1.10.11.0	Yes
Application	ibm	qradar_suite	< 1.10.17.0	Yes

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/233665 VDB Entry, Vendor Advisory ([email protected])
https://www.ibm.com/support/pages/node/7080058 Vendor Advisory ([email protected])
https://exchange.xforce.ibmcloud.com/vulnerabilities/233665 VDB Entry, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://www.ibm.com/support/pages/node/7080058 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)