Session Fixation Vulnerability in IBM InfoSphere Information Server
CVE-2013-0507

8.1HIGH

Key Information:

Vendor: IBM
Status: IBM Infosphere Information Server
Vendor: CVE Published:; 5 February 2020

Summary

IBM InfoSphere Information Server versions 8.1, 8.5, 8.7, and 9.1 are susceptible to a session fixation vulnerability. This allows attackers to exploit the session management, potentially leading to unauthorized access by hijacking user sessions. Proper authentication and session handling protocols are essential to mitigate risks associated with this vulnerability.

Affected Version(s)

IBM InfoSphere Information Server 8.1

IBM InfoSphere Information Server 8.5

IBM InfoSphere Information Server 8.7

References

http://www.securityfocus.com/bid/59815

x_refsource_MISC

CVSS V3.1

Score:

8.1

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Feb 5, 2020
Vulnerability Reserved
Dec 16, 2012