CVE-2022-38382 Information

Description

IBM Cloud Pak for Security (CP4S) 1.10.0.0 through 1.10.11.0 and IBM QRadar Suite Software 1.10.12.0 through 1.10.23.0 does not invalidate session after logout which could allow another user to obtain sensitive information. IBM X-Force ID: 233672.

Reference

https://www.ibm.com/support/pages/node/7165286 https://exchange.xforce.ibmcloud.com/vulnerabilities/233672