← back
CVE-2014-6160

CVE-2014-6160

EPSS 0.6%
IBM WebSphere Service Registry and Repository (WSRR) 8.5 before 8.5.0.1, when Chrome and WebSEAL are used, does not properly process ServiceRegistryDashboard logout actions, which allows remote attackers to bypass intended access restrictions by leveraging an unattended workstation.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://exchange.xforce.ibmcloud.com/vulnerabilities/97709http://www-01.ibm.com/support/docview.wss?uid=swg1IV63498http://www-01.ibm.com/support/docview.wss?uid=swg21693389