CVE-2007-6763

2019-07-3117:08:43

mitre

www.cve.org

8.7 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

40.1%

JSON

SAS Drug Development (SDD) before 32DRG02 mishandles logout actions, which allows a user (who was previously logged in) to access resources by pressing a back or forward button in a web browser.

References

ftp.sas.com/techsup/download/hotfix/drugdev/32drg02/SDD_Release_Notes_32DRG02.pdf