Description
Session fixation vulnerability in IBM InfoSphere Master Data Management - Collaborative Edition 10.x before 10.1 IF5 and 11.0 before IF1 and InfoSphere Master Data Management Server for Product Information Management 9.x before 9.1 IF11 allows remote authenticated users to hijack web sessions via unspecified vectors.
References (2)
Core 2
Core References
Vendor Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21660082
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/87535
Scores
EPSS
0.0050
EPSS Percentile
38.8%
Details
CWE
CWE-287
Status
published
Products (5)
ibm/infosphere_master_data_management_collaboration_server
10.0
ibm/infosphere_master_data_management_collaboration_server
10.1
ibm/infosphere_master_data_management_collaboration_server
11.0
ibm/infosphere_master_data_management_server_for_product_information_management
9.0
ibm/infosphere_master_data_management_server_for_product_information_management
9.1
Published
Dec 19, 2013
Tracked Since
Feb 18, 2026