Vulnerabilities > CVE-2023-45187 - Unspecified vulnerability in IBM Engineering Lifecycle Optimization 7.0.2/7.0.3

047910
CVSS 8.8 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
LOW
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH
network
low complexity
ibm

Summary

IBM Engineering Lifecycle Optimization - Publishing 7.0.2 and 7.0.3 does not invalidate session after logout which could allow an authenticated user to impersonate another user on the system. IBM X-Force ID: 268749.

Vulnerable Configurations

Part Description Count
Application
Ibm
2