ID CVE-2014-4756
Summary The Administration and Reporting Tool in IBM Rational License Key Server (RLKS) 8.1.4.x before 8.1.4.4 allows remote authenticated users to hijack sessions via unspecified vectors.
References
Vulnerable Configurations
  • cpe:2.3:a:ibm:rational_license_key_server:8.1.4:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:rational_license_key_server:8.1.4:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:rational_license_key_server:8.1.4.2:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:rational_license_key_server:8.1.4.2:*:*:*:*:*:*:*
  • cpe:2.3:a:ibm:rational_license_key_server:8.1.4.3:*:*:*:*:*:*:*
    cpe:2.3:a:ibm:rational_license_key_server:8.1.4.3:*:*:*:*:*:*:*
CVSS
Base: 3.5 (as of 29-08-2017 - 01:35)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK MEDIUM SINGLE
Impact
ConfidentialityIntegrityAvailability
NONE PARTIAL NONE
cvss-vector via4 AV:N/AC:M/Au:S/C:N/I:P/A:N
refmap via4
bid 69645
confirm
secunia 60709
xf ibm-rlksart-cve20144756-session(94444)
Last major update 29-08-2017 - 01:35
Published 10-09-2014 - 10:55
Last modified 29-08-2017 - 01:35
Back to Top