PT-2013-5537 · Ibm · Ibm Infosphere Master Data Management - Collaborative Edition+1
Publicado
2013-12-19
·
Atualizado
2017-08-29
·
CVE-2013-5426
CVSS v2.0
4.9
Média
| Vetor | AV:A/AC:M/Au:S/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
IBM InfoSphere Master Data Management - Collaborative Edition versions 10.0 through 10.1 before IF5
IBM InfoSphere Master Data Management - Collaborative Edition version 11.0 before IF1
IBM InfoSphere Master Data Management Server for Product Information Management versions 9.0 through 9.1 before IF11
Description
A session fixation issue allows remote authenticated users to hijack web sessions.
Recommendations
For IBM InfoSphere Master Data Management - Collaborative Edition versions 10.0 through 10.1 before IF5, update to version 10.1 IF5 or later.
For IBM InfoSphere Master Data Management - Collaborative Edition version 11.0 before IF1, update to version 11.0 IF1 or later.
For IBM InfoSphere Master Data Management Server for Product Information Management versions 9.0 through 9.1 before IF11, update to version 9.1 IF11 or later.
Correção
Improper Authentication
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Ibm Infosphere Master Data Management - Collaborative Edition
Ibm Infosphere Master Data Management Server For Product Information Management