Lucene search
IbmCVE-2013-4001HistoryDec 14, 2013 - 10:55 p.m.
CVE-2013-4001
2013-12-1422:55:02
CWE-287
ibm
web.nvd.nist.gov
24
ibm
cognos
command center
10.2
session fixation
vulnerability
nvd
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
6.7
Confidence
Low
EPSS
0.002
Percentile
53.6%
Session fixation vulnerability in IBM Cognos Command Center before 10.2 allows remote attackers to hijack web sessions via an authorization cookie.
Affected configurations
Node
ibmcognos_command_centerRange≤10.1
ORibmcognos_command_centerMatch10.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| ibm | cognos_command_center | * | cpe:2.3:a:ibm:cognos_command_center:*:*:*:*:*:*:*:* |
| ibm | cognos_command_center | 10.0 | cpe:2.3:a:ibm:cognos_command_center:10.0:*:*:*:*:*:*:* |
Related
nvd
nvd
CVE-2013-4001
2013-12-14 22:55:02
prion
prion
Session fixation
2013-12-14 22:55:00
cvelist
cvelist
CVE-2013-4001
2013-12-14 22:00:00
seebug
seebug
IBM Cognos Command Center会话固定漏洞
2013-12-17 00:00:00
ibm
ibm
New Security Bulletin for Cognos Command Center 10.1
2018-06-15 22:28:28
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
6.7
Confidence
Low
EPSS
0.002
Percentile
53.6%
Related for CVE-2013-4001