CVE-2020-4555
CVE-2020-4555
IBM Financial Transaction Manager 3.0.6 and 3.1.0 does not invalidate session after logout which could allow an authenticated user to impersonate another user on the system. IBM X-Force ID: 183328.
CVSS:3.0/S:U/UI:N/AV:N/PR:L/AC:L/I:L/C:L/A:L/E:U/RL:O/RC:C
Produtos afetados
IBM · Financial Transaction ManagerQuer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
https://exchange.xforce.ibmcloud.com/vulnerabilities/183328https://www.ibm.com/support/pages/node/6388702https://www.ibm.com/support/pages/node/6388704https://www.ibm.com/support/pages/node/6388706https://www.ibm.com/support/pages/node/6388708https://www.ibm.com/support/pages/node/6388722https://www.ibm.com/support/pages/node/6388744