CVE-2022-38382 : IBM Cloud Pak for Security (CP4S) 1.10.0.0 through 1.10.11.0 and IBM QRadar Suit

IBM Cloud Pak for Security (CP4S) 1.10.0.0 through 1.10.11.0 and IBM QRadar Suite Software 1.10.12.0 through 1.10.23.0 does not invalidate session after logout which could allow another authenticated user to obtain sensitive information. IBM X-Force ID: 233672.

Published 2024-08-13 01:01:34

Updated 2024-09-21 10:15:03

Source IBM Corporation

View at NVD, CVE.org

Products affected by CVE-2022-38382

IBM » Cloud Pak For Security
Versions from including (>=) 1.10.0.0 and up to, including, (<=) 1.10.11.0
cpe:2.3:a:ibm:cloud_pak_for_security:*:*:*:*:*:*:*:*
Matching versions
IBM » Cloud Pak For Security
Versions from including (>=) 1.10.0.0 and up to, including, (<=) 1.10.11.0
cpe:2.3:a:ibm:cloud_pak_for_security:*:*:*:*:*:*:*:*
Matching versions
IBM » Qradar Suite
Versions from including (>=) 1.10.12.0 and up to, including, (<=) 1.10.23.0
cpe:2.3:a:ibm:qradar_suite:*:*:*:*:*:*:*:*
Matching versions
IBM » Qradar Suite
Versions from including (>=) 1.10.12.0 and up to, including, (<=) 1.10.23.0
cpe:2.3:a:ibm:qradar_suite:*:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2022-38382

EPSS FAQ

0.05%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 17 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2022-38382

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
4.7	MEDIUM	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:N/A:N	N/A	N/A	IBM Corporation	2024-08-13
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: Required Scope: Changed Confidentiality: Low Integrity: None Availability: None
4.1	MEDIUM	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:N/A:N	2.3	1.4	NIST	2024-09-12
Attack Vector: Network Attack Complexity: Low Privileges Required: Low User Interaction: Required Scope: Changed Confidentiality: Low Integrity: None Availability: None
4.7	MEDIUM	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:N/A:N	2.8	1.4	IBM Corporation	2024-08-13
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: Required Scope: Changed Confidentiality: Low Integrity: None Availability: None

CWE ids for CVE-2022-38382

CWE-613 Insufficient Session Expiration

According to WASC, "Insufficient Session Expiration is when a web site permits an attacker to reuse old session credentials or session IDs for authorization."
Assigned by:
- 9a959283-ebb5-44b6-b705-dcc2bbced522 (Primary)
- psirt@us.ibm.com (Primary)

References for CVE-2022-38382

https://exchange.xforce.ibmcloud.com/vulnerabilities/233672

IBM Cloud Pak for Security session fixation CVE-2022-38382 Vulnerability Report
VDB Entry
https://www.ibm.com/support/pages/node/7165286

Security Bulletin: IBM QRadar Suite software is vulnerable to invalid session timeout
Vendor Advisory

Jump to

Vulnerability Details : CVE-2022-38382

Products affected by CVE-2022-38382

Exploit prediction scoring system (EPSS) score for CVE-2022-38382

CVSS scores for CVE-2022-38382

CWE ids for CVE-2022-38382

References for CVE-2022-38382