CVE-2013-2997

2013-09-08T12:55:06
ID CVE-2013-2997
Type cve
Reporter NVD
Modified 2017-08-28T21:33:19

Description

IBM Security AppScan Enterprise before 8.7 does not invalidate the session context upon a logout action, which allows remote attackers to hijack sessions by leveraging an unattended workstation.