CVE-2014-0971: IBM InfoSphere Master Data Management - Collaborative Edition session fixation

2014-08-15T00:00:00
ID CVE-2014-0971
Type cve
Reporter NVD
Modified 2014-08-15T00:00:00

Description

IBM InfoSphere Master Data Management - Collaborative Edition does not update the session identifier after a successful authentication. An attacker could exploit this vulnerability to gain unauthorized access to the application by acting as the session created by a regular user.