Session Hijacking Vulnerability in IBM WebSphere DataPower XC10 Appliance 2.1

Session Hijacking Vulnerability in IBM WebSphere DataPower XC10 Appliance 2.1

CVE-2015-1893 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

The IBM WebSphere DataPower XC10 appliance 2.1 before 2.1.0.3 allows remote attackers to hijack the sessions of arbitrary users, and consequently obtain sensitive information or modify data, via unspecified vectors.

Learn more about our Cis Benchmark Audit For Ibm I.