Known Vulnerabilities for Curam Social Program Management by Ibm

Listed below are 10 of the newest known vulnerabilities associated with "Curam Social Program Management" by "Ibm".

These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.

Data on known vulnerable versions is also displayed based on information from known CPEs

Known Vulnerabilities

CVE	Shortened Description	Severity	Publish Date	Last Modified
CVE-2022-22318 json	IBM Curam Social Program Management 8.0.0 and 8.0.1 does not invalidate session after logout which could allow an authenticat...	9.8 - CRITICAL	2022-06-20	2022-06-28
CVE-2022-22317 json	IBM Curam Social Program Management 8.0.0 and 8.0.1 does not invalidate session after logout which could allow an authenticat...	9.8 - CRITICAL	2022-06-20	2022-06-28
CVE-2021-39068 json	IBM Curam Social Program Management 8.0.1 and 7.0.11 is vulnerable to cross-site scripting. This vulnerability allows users t...	5.4 - MEDIUM	2022-04-11	2022-04-15
CVE-2020-4942 json	IBM Curam Social Program Management 7.0.9 and 7.0.11 is vulnerable to cross-site request forgery which could allow an attacke...	8.8 - HIGH	2021-01-04	2021-01-06
CVE-2020-4781 json	An improper input validation before calling java readLine() method may impact IBM Curam Social Program Management 7.0.9 and 7...	6.5 - MEDIUM	2020-10-12	2020-10-26
CVE-2020-4780 json	OOTB build scripts does not set the secure attribute on session cookie which may impact IBM Curam Social Program Management 7...	5.3 - MEDIUM	2020-10-12	2020-10-26
CVE-2020-4779 json	A HTTP Verb Tampering vulnerability may impact IBM Curam Social Program Management 7.0.9 and 7.0.10. By sending a specially-c...	8.1 - HIGH	2020-10-12	2020-10-19
CVE-2020-4778 json	IBM Curam Social Program Management 7.0.9 and 7.0.10 uses MD5 algorithm for hashing token in a single instance which less saf...	7.5 - HIGH	2020-10-12	2021-07-21
CVE-2020-4776 json	A path traversal vulnerability may impact IBM Curam Social Program Management 7.0.9 and 7.0.10, which could allow a remote at...	7.5 - HIGH	2020-10-12	2020-10-19
CVE-2020-4775 json	A cross-site scripting (XSS) vulnerability may impact IBM Curam Social Program Management 7.0.9 and 7.0.10. This vulnerabilit...	5.4 - MEDIUM	2020-10-12	2020-10-16

Results limited to 10 most recent vulnerabilities

Known Affected Configurations (CPE V2.3)

Type	Vendor	Product	Version
Application	Ibm	Curam Social Program Management	7.0.9.0
Application	Ibm	Curam Social Program Management	7.0.7.0
Application	Ibm	Curam Social Program Management	7.0.6.0
Application	Ibm	Curam Social Program Management	7.0.5.0
Application	Ibm	Curam Social Program Management	7.0.4.3
Application	Ibm	Curam Social Program Management	7.0.4.2
Application	Ibm	Curam Social Program Management	7.0.4.1
Application	Ibm	Curam Social Program Management	7.0.4.0
Application	Ibm	Curam Social Program Management	7.0.3.0
Application	Ibm	Curam Social Program Management	7.0.2.1
Application	Ibm	Curam Social Program Management	7.0.2.0
Application	Ibm	Curam Social Program Management	7.0.11.0
Application	Ibm	Curam Social Program Management	7.0.10.0
Application	Ibm	Curam Social Program Management	7.0.1.3
Application	Ibm	Curam Social Program Management	7.0.1.2
Application	Ibm	Curam Social Program Management	7.0.1.1
Application	Ibm	Curam Social Program Management	7.0.1.0
Application	Ibm	Curam Social Program Management	7.0.0.2
Application	Ibm	Curam Social Program Management	7.0.0.1
Application	Ibm	Curam Social Program Management	7.0.0.0

Results limited to 20 most recent known configurations