Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
IBM Security Information Queue (ISIQ) 1.0.0, 1.0.1, 1.0.2, 1.0.3, 1.0.4, and 1.0.5 could disclose sensitive information to an unauthorized user due to insufficient timeout functionality in the Web UI. IBM X-Force ID: 176334.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IBM Security Information Queue 授权问题漏洞
Vulnerability Description
IBM Security Information Queue(ISIQ)是美国IBM公司的一款数据集成产品。该产品利用Kafka技术和发布-订阅模型在IBM安全产品之间集成数据。 IBM ISIQ中存在授权问题漏洞,该漏洞源于在用户退出登录时,程序没有立刻使会话失效。攻击者可利用该漏洞获取敏感信息。以下产品及版本受到影响:IBM ISIQ 1.0.0版本,1.0.1版本,1.0.2版本,1.0.3版本,1.0.4版本,1.0.5版本。
CVSS Information
N/A
Vulnerability Type
N/A