Lucene search
IbmCVELIST:CVE-2017-1152HistoryApr 14, 2017 - 4:00 p.m.
CVE-2017-1152
2017-04-1416:00:00
ibm
www.cve.org
IBM Financial Transaction Manager 3.0.1 and 3.0.2 does not properly update the SESSIONID with each request, which could allow a user to obtain the ID in further attacks against the system. IBM X-Force ID: 122293.
CNA Affected
[
{
"product": "Financial Transaction Manager",
"vendor": "IBM Corporation",
"versions": [
{
"status": "affected",
"version": "3.0.1"
},
{
"status": "affected",
"version": "3.0.1.0"
},
{
"status": "affected",
"version": "3.0.2"
},
{
"status": "affected",
"version": "3.0.2.0"
},
{
"status": "affected",
"version": "3.0.2.1"
}
]
}
]Related
cve
cve
CVE-2017-1152
2017-04-14 16:59:00
ibm
ibm
prion
prion
Design/Logic Flaw
2017-04-14 16:59:00
nvd
nvd
CVE-2017-1152
2017-04-14 16:59:00