← back
CVE-2017-1270

CVE-2017-1270

EPSS 0.3%
IBM Security Guardium 10.0 does not renew a session variable after a successful authentication which could lead to session fixation/hijacking vulnerability. This could force a user to utilize a cookie that may be known to an attacker. IBM X-Force ID: 124745.
Affected products
IBM · Security Guardium

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://exchange.xforce.ibmcloud.com/vulnerabilities/124745http://www.ibm.com/support/docview.wss?uid=swg22010439