PT-2019-17025 · Ibm · Ibm Websphere Application Server

Publicado

2019-09-30

·

Atualizado

2022-12-02

·

CVE-2019-4304

CVSS v2.0

6.5

Média

VetorAV:N/AC:L/Au:S/C:P/I:P/A:P
Name of the Vulnerable Software and Affected Versions IBM WebSphere Application Server - Liberty (affected versions not specified)
Description The issue is caused by improper session validation, which could allow a remote attacker to bypass security restrictions.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Session Fixation

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-384

Identificadores relacionados

CVE-2019-4304

Produtos afetados

Ibm Websphere Application Server