CVE-2016-9703

Sažetak

IBM Security Identity Manager Virtual Appliance does not invalidate session tokens which could allow an unauthorized user with physical access to the work station to obtain sensitive information.

Reference

http://www.ibm.com/support/docview.wss?uid=swg21996761
http://www.securityfocus.com/bid/95327
http://www.securitytracker.com/id/1037765

CVSS

Base:	2.1
Impact:	2.9
Exploitability:	3.9

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	NONE	NONE

CVSS vektor

AV:L/AC:L/Au:N/C:P/I:N/A:N

Zadnje važnije ažuriranje

25-07-2017 - 01:29

Objavljeno

01-02-2017 - 22:59