Session Fixation Vulnerability in IBM InfoSphere Information Server
CVE-2013-0507

8.1HIGH

Key Information:

Vendor
IBM
Vendor
CVE Published:
5 February 2020

Summary

IBM InfoSphere Information Server versions 8.1, 8.5, 8.7, and 9.1 are susceptible to a session fixation vulnerability. This allows attackers to exploit the session management, potentially leading to unauthorized access by hijacking user sessions. Proper authentication and session handling protocols are essential to mitigate risks associated with this vulnerability.

Affected Version(s)

IBM InfoSphere Information Server 8.1

IBM InfoSphere Information Server 8.5

IBM InfoSphere Information Server 8.7

References

CVSS V3.1

Score:
8.1
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.