Vulnerabilities > IBM > Cloud PAK FOR Multicloud Management Monitoring > 2.2.0

DATE	CVE	VULNERABILITY TITLE	RISK
2023-02-08	CVE-2022-42438	Forced Browsing vulnerability in IBM Cloud PAK for Multicloud Management Monitoring IBM Cloud Pak for Multicloud Management Monitoring 2.0 and 2.3 allows users without admin roles access to admin functions by specifying direct URL paths. network low complexity ibm CWE-425	8.8
2021-03-09	CVE-2021-20341	Unspecified vulnerability in IBM Cloud PAK for Multicloud Management Monitoring 2.0.0/2.2.0 IBM Cloud Pak for Multicloud Management Monitoring 2.2 returns potentially sensitive information in headers which could lead to further attacks against the system. network low complexity ibm	5.3

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.