CVE-2015-2029

Currently unrated

Key Information:

Vendor
IBM
Status
Websphere Extreme Scale
Vendor
CVE Published:
4 October 2015

Summary

Session fixation vulnerability in IBM WebSphere eXtreme Scale 7.1.0 before 7.1.0.3 and 7.1.1 before 7.1.1.1 allows remote attackers to hijack web sessions via a session identifier.

References

http://www-01.ibm.com/support/docview.wss?uid=swg21966044
x_refsource_CONFIRM
http://www-01.ibm.com/support/docview.wss?uid=swg1PI44105
vendor-advisoryx_refsource_AIXAPAR
http://www-01.ibm.com/support/docview.wss?uid=swg1PI44098
vendor-advisoryx_refsource_AIXAPAR

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.