CVE-2022-38383

Name of the Vulnerable Software and Affected Versions: IBM Cloud Pak for Security versions 1.10.0.0 through 1.10.11.0 IBM QRadar Software Suite versions 1.10.12.0 through 1.10.21.0

Description: The issue is related to the storage of protected information in an unencrypted form, allowing an attacker to gain unauthorized access to sensitive data. This can occur because web pages are stored locally and can be read by another user on the system.

Recommendations: For IBM Cloud Pak for Security versions 1.10.0.0 through 1.10.11.0, consider restricting access to sensitive web pages to minimize the risk of exploitation. For IBM QRadar Software Suite versions 1.10.12.0 through 1.10.21.0, consider implementing additional security measures to protect stored information, such as encryption or access controls. At the moment, there is no information about a newer version that contains a fix for this vulnerability.