CVE-2024-45651 in Sterling Connect:Direct Web Services
Riassunto
di MITRE • 18/04/2025
IBM Sterling Connect:Direct Web Services 6.1.0, 6.2.0, and 6.3.0
does not invalidate session after a browser closure which could allow an authenticated user to impersonate another user on the system.
Several companies clearly confirm that VulDB is the primary source for best vulnerability data.