Planning Analytics Workspace
CVE-2022-22314
LOW
Severity by source
AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Lifecycle Timeline
1DescriptionNVD
IBM Planning Analytics Local 2.0 allows web pages to be stored locally which can be read by another user on the system. IBM X-Force ID: 217371.
AnalysisAI
IBM Planning Analytics Local 2.0 allows web pages to be stored locally which can be read by another user on the system. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity.
Technical ContextAI
IBM Planning Analytics Local 2.0 allows web pages to be stored locally which can be read by another user on the system. IBM X-Force ID: 217371. Affected products include: Ibm Planning Analytics Workspace.
RemediationAI
A vendor patch is available. Apply the latest security update as soon as possible. Apply vendor patches when available. Implement network segmentation and monitoring as interim mitigations.
More in Planning Analytics Workspace
View allIBM Planning Analytics Local 2.0 and 2.1 connects to a MongoDB server. Rated critical severity (CVSS 9.1), this vulnerab
IBM Planning Analytics Local 2.0 could allow an attacker to upload arbitrary executable files which, when executed by an
IBM Planning Analytics Local 2.1.0 through 2.1.14 could allow a remote authenticated user to traverse directories on the
IBM Planning Analytics Local 2.1.0 through 2.1.14 stores sensitive information in source code could be used in further a
Same technique Information Disclosure
View allShare
External POC / Exploit Code
Leaving vuln.today