← voltar
CVE-2013-2994

CVE-2013-2994

EPSS 1.3%
IBM WebSphere Commerce 7.0 Feature Pack 4 and Feature Pack 5 incorrectly maintains a valid session after unspecified interaction with REST services, which allows remote attackers to issue REST requests in the context of an arbitrary user's active session via unknown vectors.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://exchange.xforce.ibmcloud.com/vulnerabilities/84033http://www-01.ibm.com/support/docview.wss?uid=swg1JR45420http://www-01.ibm.com/support/docview.wss?uid=swg21644393