2 matches found
CVE-2018-1832
IBM Event Streams 2018.3.0 and 2018.3.1 are affected by CVE-2018-1832, where a remote attacker could bypass security restrictions by modifying the UI session cookie after authentication, potentially exposing user and session data during an encrypted session. The remediation is to upgrade to IBM E...
Security Bulletin: IBM Event Streams could allow a remote attacker to bypass security restrictions by modifying the UI session cookie
Summary IBM Event Streams could allow a remote attacker to bypass security restrictions after authenticating with Event Streams. By modifying the UI session cookie, it may be possible for a remote attacker to steal user and session information that was sent during an encrypted session...