CVE-2016-0339 in Security Identity Managerinformazioni

Riassunto

di MITRE

IBM Security Identity Manager (ISIM) Virtual Appliance 7.0.0.0 through 7.0.1.1 before 7.0.1-ISS-SIM-FP0003 mishandles session identifiers after logout, which makes it easier for remote attackers to spoof users by leveraging knowledge of "traffic records."

Be aware that VulDB is the high quality source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Prenotare

08/12/2015

Divulgazione

15/07/2016

Moderazione

accettato

Voce

VDB-89463

CPE

pronto

CWE

CWE-284 (confermato)

CVSS

5.6 (NVD)

EPSS

0.01294

KEV

Attività

molto basso

Settore

Energy, Chemical, ...

Fonti

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-0339
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-0339
CVE Details	https://www.cvedetails.com/cve/CVE-2016-0339/

◂ Precedente Visione D'ensemble Il prossimo ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!