CVE-2013-0540 in WebSphere Application Serverinformación

Resumen (Inglés)

IBM WebSphere Application Server (WAS) Liberty Profile 8.5 before 8.5.0.2, when SSL is not enabled, does not properly validate authentication cookies, which allows remote authenticated users to bypass intended access restrictions via an HTTP session.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Reservar

2012-12-16

Divulgación

2013-04-24

Estado

Confirmado

Voces

VulDB provides additional information and datapoints for this CVE:

ID	Vulnerabilidad	CWE	Exp	Con	CVE
8518	IBM WebSphere Application Server Authentication autenticación débil	287	Prueba de concepto	Arreglo oficial	CVE-2013-0540

Descripción

CPE

CWE

CVSS

Hazañas

Historia

Diferencia

Relacionar

Inteligencia de amenazas

API JSON

API XML

API CSV

Fuentes

MITRE
NVD
CVE Details

◂ AnteriorVisión De ConjuntoPróximo ▸

Want to know what is going to be exploited?

We predict KEV entries!