CVE-2023-45187

Name of the Vulnerable Software and Affected Versions IBM Engineering Lifecycle Optimization - Publishing versions 7.0.2 through 7.0.3

Description The issue allows an authenticated user to impersonate another user on the system due to the failure to invalidate session after logout.

Recommendations For versions 7.0.2 and 7.0.3, consider implementing a workaround to manually invalidate sessions after logout until a patch is available. As a temporary workaround, consider restricting access to sensitive features that could be exploited by an impersonated user. At the moment, there is no information about a newer version that contains a fix for this vulnerability.