The IBM WebSphere DataPower XC10 appliance 2.1 before 2.1.0.3 allows remote attackers to hijack the sessions of arbitrary users, and consequently obtain sensitive information or modify data, via unspecified vectors.
References
Link | Resource |
---|---|
http://www-01.ibm.com/support/docview.wss?uid=swg1IT07841 | Vendor Advisory |
http://www-01.ibm.com/support/docview.wss?uid=swg21701337 | Vendor Advisory Patch |
http://www.securityfocus.com/bid/73916 | Third Party Advisory VDB Entry |
http://www.securitytracker.com/id/1032025 | Third Party Advisory VDB Entry |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: ibm
Published: 2015-04-06T00:00:00
Updated: 2016-07-22T16:57:01
Reserved: 2015-02-19T00:00:00
Link: CVE-2015-1893
JSON object: View
NVD Information
Status : Analyzed
Published: 2015-04-06T00:59:06.893
Modified: 2016-08-04T03:26:17.437
Link: CVE-2015-1893
JSON object: View
Redhat Information
No data.
CWE