The IBM WebSphere DataPower XC10 appliance 2.1 before 2.1.0.3 allows remote attackers to hijack the sessions of arbitrary users, and consequently obtain sensitive information or modify data, via unspecified vectors.
References
Link | Resource |
---|---|
http://www-01.ibm.com/support/docview.wss?uid=swg1IT07841 | Vendor Advisory |
http://www-01.ibm.com/support/docview.wss?uid=swg21701337 | Patch Vendor Advisory |
http://www.securityfocus.com/bid/73916 | Third Party Advisory VDB Entry |
http://www.securitytracker.com/id/1032025 | Third Party Advisory VDB Entry |
http://www-01.ibm.com/support/docview.wss?uid=swg1IT07841 | Vendor Advisory |
http://www-01.ibm.com/support/docview.wss?uid=swg21701337 | Patch Vendor Advisory |
http://www.securityfocus.com/bid/73916 | Third Party Advisory VDB Entry |
http://www.securitytracker.com/id/1032025 | Third Party Advisory VDB Entry |
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 02:26
Type | Values Removed | Values Added |
---|---|---|
References | () http://www-01.ibm.com/support/docview.wss?uid=swg1IT07841 - Vendor Advisory | |
References | () http://www-01.ibm.com/support/docview.wss?uid=swg21701337 - Patch, Vendor Advisory | |
References | () http://www.securityfocus.com/bid/73916 - Third Party Advisory, VDB Entry | |
References | () http://www.securitytracker.com/id/1032025 - Third Party Advisory, VDB Entry |
Information
Published : 2015-04-06 00:59
Updated : 2024-11-21 02:26
NVD link : CVE-2015-1893
Mitre link : CVE-2015-1893
CVE.ORG link : CVE-2015-1893
JSON object : View
Products Affected
ibm
- websphere_datapower_xc10_appliance_firmware
CWE
CWE-264
Permissions, Privileges, and Access Controls