← voltar
CVE-2017-1270

CVE-2017-1270

EPSS 0.3%
Vexday Risk Score
3Baixo
Decisão SSVC (CISA)
Track
Sem sinal de exploração → monitorar
CVSS EPSS 0.3%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
20 dez 2017Publicada no NVD
Recomendação: Monitorar — sem sinal de exploração no momento.
IBM Security Guardium 10.0 does not renew a session variable after a successful authentication which could lead to session fixation/hijacking vulnerability. This could force a user to utilize a cookie that may be known to an attacker. IBM X-Force ID: 124745.
Produtos afetados
IBM · Security Guardium