← voltar
CVE-2014-6160

CVE-2014-6160

EPSS 0.6%
IBM WebSphere Service Registry and Repository (WSRR) 8.5 before 8.5.0.1, when Chrome and WebSEAL are used, does not properly process ServiceRegistryDashboard logout actions, which allows remote attackers to bypass intended access restrictions by leveraging an unattended workstation.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://exchange.xforce.ibmcloud.com/vulnerabilities/97709http://www-01.ibm.com/support/docview.wss?uid=swg1IV63498http://www-01.ibm.com/support/docview.wss?uid=swg21693389