Description

IBM Jazz Foundation products could allow a user with physical access to the system to log in as another user due to the server's failure to properly log out from the previous session. IBM X-Force ID: 140977.

Remediation

References

CVE-2018-1492

Related Vulnerabilities

Joomla! Core 3.x.x Security Bypass (3.7.0 - 3.9.15)

Handlebars Loop with Unreachable Exit Condition ('Infinite Loop') Vulnerability (CVE-2019-20922)

WordPress Plugin Easy Appointments Cross-Site Scripting (3.11.0)

OpenSSL Other Vulnerability (CVE-2005-2969)

WordPress Plugin Access Demo Importer Arbitrary File Upload (1.0.6)

Severity

Medium

Classification

CVE-2018-1492 CWE-384 CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities