CVE-2015-1893

Currently unrated

Key Information:

Vendor: IBM
Status: Websphere Datapower Xc10 Appliance Firmware
Vendor: CVE Published:; 6 April 2015

Summary

The IBM WebSphere DataPower XC10 appliance 2.1 before 2.1.0.3 allows remote attackers to hijack the sessions of arbitrary users, and consequently obtain sensitive information or modify data, via unspecified vectors.

References

http://www.securitytracker.com/id/1032025

vdb-entryx_refsource_SECTRACK

http://www-01.ibm.com/support/docview.wss?uid=swg21701337

x_refsource_CONFIRM

http://www.securityfocus.com/bid/73916

vdb-entryx_refsource_BID

Timeline

Vulnerability published
Apr 6, 2015
Vulnerability Reserved
Feb 19, 2015