Known Vulnerabilities for Curam Social Program Management by Ibm

Listed below are 10 of the newest known vulnerabilities associated with "Curam Social Program Management" by "Ibm".

These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.

Data on known vulnerable versions is also displayed based on information from known CPEs

Known Vulnerabilities

CVE	Shortened Description	Severity	Publish Date	Last Modified
CVE-2022-22318	IBM Curam Social Program Management 8.0.0 and 8.0.1 does not invalidate session after logout which could allow an authenticat...	9.8 - CRITICAL	2022-06-20	2022-06-28
CVE-2022-22317	IBM Curam Social Program Management 8.0.0 and 8.0.1 does not invalidate session after logout which could allow an authenticat...	9.8 - CRITICAL	2022-06-20	2022-06-28
CVE-2021-39068	IBM Curam Social Program Management 8.0.1 and 7.0.11 is vulnerable to cross-site scripting. This vulnerability allows users t...	5.4 - MEDIUM	2022-04-11	2022-04-15
CVE-2020-4779	A HTTP Verb Tampering vulnerability may impact IBM Curam Social Program Management 7.0.9 and 7.0.10. By sending a specially-c...	8.1 - HIGH	2020-10-12	2020-10-19
CVE-2020-4778	IBM Curam Social Program Management 7.0.9 and 7.0.10 uses MD5 algorithm for hashing token in a single instance which less saf...	7.5 - HIGH	2020-10-12	2021-07-21
CVE-2020-4776	A path traversal vulnerability may impact IBM Curam Social Program Management 7.0.9 and 7.0.10, which could allow a remote at...	7.5 - HIGH	2020-10-12	2020-10-19
CVE-2020-4775	A cross-site scripting (XSS) vulnerability may impact IBM Curam Social Program Management 7.0.9 and 7.0.10. This vulnerabilit...	5.4 - MEDIUM	2020-10-12	2020-10-16
CVE-2020-4774	An XPath vulnerability may impact IBM Curam Social Program Management 7.0.9 and 7.0.10, caused by the improper handling of us...	5.4 - MEDIUM	2020-10-12	2021-07-21
CVE-2020-4773	A cross-site request forgery (CSRF) vulnerability may impact IBM Curam Social Program Management 7.0.9 and 7.0.10, which is a...	6.5 - MEDIUM	2020-10-12	2020-10-19
CVE-2020-4772	An XML External Entity Injection (XXE) vulnerability may impact IBM Curam Social Program Management 7.0.9 and 7.0.10. A remot...	8.1 - HIGH	2020-10-12	2020-10-19

Results limited to 10 most recent vulnerabilities

Known Affected Configurations (CPE V2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Application	Ibm	Curam Social Program Management	7.0.9.0	All	All	All
Application	Ibm	Curam Social Program Management	7.0.7.0	All	All	All
Application	Ibm	Curam Social Program Management	7.0.6.0	All	All	All
Application	Ibm	Curam Social Program Management	7.0.5.0	All	All	All
Application	Ibm	Curam Social Program Management	7.0.4.3	All	All	All
Application	Ibm	Curam Social Program Management	7.0.4.2	All	All	All
Application	Ibm	Curam Social Program Management	7.0.4.1	All	All	All
Application	Ibm	Curam Social Program Management	7.0.4.0	All	All	All
Application	Ibm	Curam Social Program Management	7.0.3.0	All	All	All
Application	Ibm	Curam Social Program Management	7.0.2.1	All	All	All
Application	Ibm	Curam Social Program Management	7.0.2.0	All	All	All
Application	Ibm	Curam Social Program Management	7.0.11.0	All	All	All
Application	Ibm	Curam Social Program Management	7.0.10.0	All	All	All
Application	Ibm	Curam Social Program Management	7.0.1.3	All	All	All
Application	Ibm	Curam Social Program Management	7.0.1.2	All	All	All
Application	Ibm	Curam Social Program Management	7.0.1.1	All	All	All
Application	Ibm	Curam Social Program Management	7.0.1.0	All	All	All
Application	Ibm	Curam Social Program Management	7.0.0.2	All	All	All
Application	Ibm	Curam Social Program Management	7.0.0.1	All	All	All
Application	Ibm	Curam Social Program Management	7.0.0.0	All	All	All

Results limited to 20 most recent known configurations