Lucene search
HistoryDec 14, 2013 - 10:55 p.m.
CVE-2013-4001
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
6.5
Confidence
Low
EPSS
0.002
Percentile
53.6%
Session fixation vulnerability in IBM Cognos Command Center before 10.2 allows remote attackers to hijack web sessions via an authorization cookie.
Affected configurations
Node
ibmcognos_command_centerRange≤10.1
ORibmcognos_command_centerMatch10.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| ibm | cognos_command_center | * | cpe:2.3:a:ibm:cognos_command_center:*:*:*:*:*:*:*:* |
| ibm | cognos_command_center | 10.0 | cpe:2.3:a:ibm:cognos_command_center:10.0:*:*:*:*:*:*:* |
Related
prion
prion
Session fixation
2013-12-14 22:55:00
cvelist
cvelist
CVE-2013-4001
2013-12-14 22:00:00
seebug
seebug
IBM Cognos Command Center会话固定漏洞
2013-12-17 00:00:00
cve
cve
CVE-2013-4001
2013-12-14 22:55:02
ibm
ibm
New Security Bulletin for Cognos Command Center 10.1
2018-06-15 22:28:28
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
6.5
Confidence
Low
EPSS
0.002
Percentile
53.6%
Related for NVD:CVE-2013-4001