CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Ibm: >> Security Verify Directory Integrator >> 10.0.0 Security Vulnerabilities

CVE-2022-33162

IBM Security Directory Integrator 7.2.0 and Security Verify Directory Integrator 10.0.0 does not perform any authentication for functionality that requires a provable user identity or consumes a significant amount of resources, at the privilege level of a standard unprivileged user. IBM X-Force ID: 228570.

CVSS Score

7.3

EPSS Score

0.002

Published

2024-08-16

CVE-2022-33167

IBM Security Directory Integrator 7.2.0 and IBM Security Verify Directory Integrator 10.0.0 could allow a remote attacker to obtain sensitive information, caused by the failure to set the HTTPOnly flag. A remote attacker could exploit this vulnerability to obtain sensitive information from the cookie. IBM X-Force ID: 228587.

CVSS Score

3.7

EPSS Score

0.001

Published

2024-07-30

Page 1

Vulnerabilities

Vulnerable Software

Ibm: >> Security Verify Directory Integrator >> 10.0.0 Security Vulnerabilities

Products

Pricing

Contact Us