Количество 2
Количество 2
CVE-2025-22216
A UAA configured with multiple identity zones, does not properly validate session information across those zones. A User authenticated against a corporate IDP can re-use their jsessionid to access other zones.
GHSA-g68x-c5mc-5vwr
A UAA configured with multiple identity zones, does not properly validate session information across those zones. A User authenticated against a corporate IDP can re-use their jsessionid to access other zones.
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2025-22216 A UAA configured with multiple identity zones, does not properly validate session information across those zones. A User authenticated against a corporate IDP can re-use their jsessionid to access other zones. | CVSS3: 5.4 | 0% Низкий | около 1 года назад |
| GHSA-g68x-c5mc-5vwr A UAA configured with multiple identity zones, does not properly validate session information across those zones. A User authenticated against a corporate IDP can re-use their jsessionid to access other zones. | CVSS3: 5.4 | 0% Низкий | около 1 года назад |
Уязвимостей на страницу