Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
IBM Security Identity Manager (ISIM) Virtual Appliance 7.0.0.0 through 7.0.1.1 before 7.0.1-ISS-SIM-FP0003 mishandles session expiration, which allows remote attackers to hijack sessions by leveraging an unattended workstation.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IBM Security Identity Manager 安全漏洞
Vulnerability Description
IBM Security Identity Manager(ISIM)是美国IBM(IBM)公司的一套身份管理和治理解决方案。该方案可在整个用户生命周期内自动创建、修改、重新认证和终止用户特权,并支持基于策略的密码管理。Virtual Appliance是ISIM虚拟应用程序。 IBM Security Identity Manager Virtual Applianc中存在安全漏洞,该漏洞源于当用户退出登录时,程序没有对会话设置有效期。本地攻击者可利用该漏洞以上一次的用户身份继续登录。以下版本受到影响:
CVSS Information
N/A
Vulnerability Type
N/A