CVE-2020-4696
CVE-2020-4696
Vexday Risk Score
13Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS 5.3EPSS 0.7%KEV nãoPoC —Nuclei —Metasploit —Patch —
Ciclo de vida
30 nov 2020Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
IBM Cloud Pak for Security 1.3.0.1(CP4S) does not invalidate session after logout which could allow an authenticated user to obtain sensitive information from the previous session. IBM X-Force ID: 186789.
CVSS:3.0/A:N/UI:N/S:U/C:L/AV:N/PR:N/I:N/AC:L/E:U/RC:C/RL:O
Productos afectados
IBM · Cloud Pak for Security