← volver
CVE-2014-6160

CVE-2014-6160

EPSS 0.6%
IBM WebSphere Service Registry and Repository (WSRR) 8.5 before 8.5.0.1, when Chrome and WebSEAL are used, does not properly process ServiceRegistryDashboard logout actions, which allows remote attackers to bypass intended access restrictions by leveraging an unattended workstation.
Productos afectados
n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://exchange.xforce.ibmcloud.com/vulnerabilities/97709http://www-01.ibm.com/support/docview.wss?uid=swg1IV63498http://www-01.ibm.com/support/docview.wss?uid=swg21693389