Session Hijacking Vulnerability in IBM Marketing Platform
CVE-2013-6309

Currently unrated

Key Information:

Vendor: IBM
Status: Marketing Platform
Vendor: CVE Published:; 28 June 2014

What is CVE-2013-6309?

A vulnerability in IBM Marketing Platform 9.1 prior to FP2 enables remote authenticated users to exploit session hijacking. By utilizing an unspecified link injection technique, attackers can manipulate session context, allowing unauthorized access to read or modify records and conduct transactions. This can lead to severe implications for data integrity and user privacy.

References

http://www-01.ibm.com/support/docview.wss?uid=swg21676688

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/88559

vdb-entryx_refsource_XF

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 28, 2014
Vulnerability Reserved
Oct 31, 2013