Lucene search
+L

4 matches found

OSV
OSV
added 2023/05/05 7:15 p.m.2 views

CVE-2020-4914

IBM Cloud Pak System Suite 2.3.3.0 through 2.3.3.5 does not invalidate session after logout which could allow a local user to impersonate another user on the system. IBM X-Force ID: 191290...

4.2CVSS5.8AI score0.00148EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/05/05 6:17 p.m.9 views

CVE-2020-4914 IBM Cloud Pak System Software Suite session fixation

IBM Cloud Pak System Suite 2.3.3.0 through 2.3.3.5 does not invalidate session after logout which could allow a local user to impersonate another user on the system. IBM X-Force ID: 191290...

4.2CVSS4.1AI score0.00148EPSS
Exploits0References2
CVE
CVE
added 2023/05/05 6:17 p.m.62 views

CVE-2020-4914

The CVE-2020-4914 issue affects IBM Cloud Pak System Software Suite 2.3.3.0–2.3.3.5, where sessions are not invalidated on logout, potentially allowing a local user to impersonate another user. This vulnerability concerns the logout/session handling component in IBM Cloud Pak System UI and REST A...

5.5CVSS4.6AI score0.00148EPSS
Exploits0References2Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2023/04/13 5:5 p.m.40 views

Security Bulletin: Vulnerability Identified in Cloud Pak System (CVE-2020-4914)

Summary Invalidate session vulnerability identified in IBM Cloud Pak System UI and Rest API at logout. IBM Cloud Pak System has addressed vulnerability. Vulnerability Details CVEID:CVE-2020-4914 DESCRIPTION: IBM Cloud Pak System does not invalidate session after logout which could allow a local...

5.5CVSS4.6AI score0.00148EPSS
Exploits0Affected Software1
Rows per page
Query Builder