Описание
HCL IEM is affected by an improper invalidation of access or JWT token vulnerability. A token was not invalidated which may allow attackers to access sensitive data without authorization.
Ссылки
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:hcltech:intelliops_event_management:1.2:*:*:*:*:*:*:*
EPSS
Процентиль: 9%
0.00032
Низкий
3.3 Low
CVSS3
5.9 Medium
CVSS3
Дефекты
CWE-287
Связанные уязвимости
CVSS3: 3.3
github
7 месяцев назад
HCL IEM is affected by an improper invalidation of access or JWT token vulnerability. A token was not invalidated which may allow attackers to access sensitive data without authorization.
EPSS
Процентиль: 9%
0.00032
Низкий
3.3 Low
CVSS3
5.9 Medium
CVSS3
Дефекты
CWE-287