IBM Security Identity Manager 7.0.1 Virtual Appliance does not invalidate session tokens when the logout button is pressed. The lack of proper session termination may allow attackers with local access to login into a closed browser session. IBM X-Force ID: 153658.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: ibm

Published: 2019-02-04T21:00:00Z

Updated: 2024-09-16T21:04:35.310Z

Reserved: 2017-12-13T00:00:00

Link: CVE-2018-1962

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2019-02-04T21:29:00.487

Modified: 2024-11-21T04:00:40.013

Link: CVE-2018-1962

cve-icon Redhat

No data.