CVE-2022-43889: IBM Security Verify Privilege information disclosure
Published Oct 5, 2023
·Updated
IBM Security Verify Privilege On-Premises 11.5 could disclose sensitive information through an HTTP request that could aid an attacker in further attacks against the system. IBM X-Force ID: 240452.
Affected Software
4 affected components
IBM Security Verify Privilege On-Premises<=All
IBM Security Verify Privilege On-Premises<11.5
macOS
Microsoft Windows
Remediation
Patch Available
Event History
Oct 5, 2023
CVE Published
via IBM·12:00 AM
Oct 17, 2023
CVE Published
via MITRE·01:56 AM
Data Sourced
via MITRE·01:56 AM
DescriptionSeverityWeakness
Frequently Asked Questions
1
What is the vulnerability ID for IBM Security Verify Privilege On-Premises?
The vulnerability ID for IBM Security Verify Privilege On-Premises is CVE-2022-43889.
2
What is the severity level of CVE-2022-43889?
The severity level of CVE-2022-43889 is medium.
3
How can an attacker exploit CVE-2022-43889?
An attacker can exploit CVE-2022-43889 by sending a malicious HTTP request to disclose sensitive information and use it for further attacks.
4
Is there a fix available for CVE-2022-43889?
Yes, IBM has provided a fix for CVE-2022-43889. Please refer to the IBM support page for more information.
5
Where can I find more information about CVE-2022-43889?
You can find more information about CVE-2022-43889 on the IBM X-Force ID page and the IBM support page.