Vulnerabilities > IBM > Partner Engagement Manager ON Cloud Saas > High

DATE	CVE	VULNERABILITY TITLE	RISK
2022-07-19	CVE-2022-22358	XXE vulnerability in IBM products IBM Sterling Partner Engagement Manager 6.1.2, 6.2, and Cloud/SasS 22.2 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. network low complexity ibm CWE-611	7.1
2022-07-19	CVE-2022-22360	Injection vulnerability in IBM products IBM Sterling Partner Engagement Manager 6.1.2, 6.2, and Cloud/SasS 22.2 could allow a remote authenticated attacker to conduct an LDAP injection. network low complexity ibm CWE-74	8.8

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.