exploitDog

GHSA-p97c-fp25-v4hq

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

Описание

IBM Maximo Asset Management 7.6.0 and 7.6.1 does not invalidate session after logout which could allow a local user to impersonate another user on the system. IBM X-Force ID: 167451.

IBM Maximo Asset Management 7.6.0 and 7.6.1 does not invalidate session after logout which could allow a local user to impersonate another user on the system. IBM X-Force ID: 167451.

Ссылки

EPSS

Процентиль: 10%

0.00036

Низкий

CVE ID

Связанные уязвимости

CVE-2019-4591

CVSS3: 7.8

nvd

больше 5 лет назад

IBM Maximo Asset Management 7.6.0 and 7.6.1 does not invalidate session after logout which could allow a local user to impersonate another user on the system. IBM X-Force ID: 167451.

EPSS

Процентиль: 10%

0.00036

Низкий

CVE ID