3 matches found
CVE-2021-4201
Missing access control in ForgeRock Access Management 7.1.0 and earlier versions on all platforms allows remote unauthenticated attackers to hijack sessions, including potentially admin-level sessions. This issue affects: ForgeRock Access Management 7.1 versions prior to 7.1.1; 6.5 versions prior...
CVE-2021-4201
CVE-2021-4201 describes a missing access control in ForgeRock Access Management, affecting 7.1.x before 7.1.1 and 6.5.x before 6.5.4, plus all earlier versions. The issue allows remote unauthenticated attackers to hijack sessions, potentially including admin-level sessions. Connected sources corr...
CVE-2021-4201 Pre-authentication session hijacking
Missing access control in ForgeRock Access Management 7.1.0 and earlier versions on all platforms allows remote unauthenticated attackers to hijack sessions, including potentially admin-level sessions. This issue affects: ForgeRock Access Management 7.1 versions prior to 7.1.1; 6.5 versions prior...