Количество 3
Количество 3
CVE-2016-8924
IBM Maximo Asset Management 7.1, 7.5 and 7.6 could allow a remote attacker to hijack a user's session, caused by the failure to invalidate an existing session identifier. An attacker could exploit this vulnerability to gain access to another user's session. IBM X-Force ID: 118537.
GHSA-qc8f-5c3c-gppm
IBM Maximo Asset Management 7.1, 7.5 and 7.6 could allow a remote attacker to hijack a user's session, caused by the failure to invalidate an existing session identifier. An attacker could exploit this vulnerability to gain access to another user's session. IBM X-Force ID: 118537.
BDU:2017-01135
Уязвимость программной системы управления активами предприятия IBM Maximo Asset Management, позволяющая нарушителю получить доступ к сессии другого пользователя
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2016-8924 IBM Maximo Asset Management 7.1, 7.5 and 7.6 could allow a remote attacker to hijack a user's session, caused by the failure to invalidate an existing session identifier. An attacker could exploit this vulnerability to gain access to another user's session. IBM X-Force ID: 118537. | CVSS3: 5.6 | 0% Низкий | почти 9 лет назад |
| GHSA-qc8f-5c3c-gppm IBM Maximo Asset Management 7.1, 7.5 and 7.6 could allow a remote attacker to hijack a user's session, caused by the failure to invalidate an existing session identifier. An attacker could exploit this vulnerability to gain access to another user's session. IBM X-Force ID: 118537. | CVSS3: 5.6 | 0% Низкий | больше 3 лет назад |
 | BDU:2017-01135 Уязвимость программной системы управления активами предприятия IBM Maximo Asset Management, позволяющая нарушителю получить доступ к сессии другого пользователя | CVSS2: 4.3 | 0% Низкий | почти 9 лет назад |
Уязвимостей на страницу