Vulnerabilities > CVE-2015-2029 - Session Hijacking vulnerability in IBM Websphere Extreme Scale 7.1.0/7.1.0.2/7.1.1

047910
CVSS 4.3 - MEDIUM
Attack vector
NETWORK
Attack complexity
MEDIUM
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
PARTIAL
Availability impact
NONE
network
ibm
NVD
Published: 2015-10-04
Updated: 2015-10-05

Summary

Session fixation vulnerability in IBM WebSphere eXtreme Scale 7.1.0 before 7.1.0.3 and 7.1.1 before 7.1.1.1 allows remote attackers to hijack web sessions via a session identifier. <a href="http://cwe.mitre.org/data/definitions/384.html">CWE-384: Session Fixation</a>

Vulnerable Configurations

Part Description Count
Application
Ibm
3

References