4.3
CVE-2010-4499
- EPSS 1.31%
- Veröffentlicht 07.01.2011 19:00:18
- Zuletzt bearbeitet 16.06.2026 23:24:55
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Session fixation vulnerability in Collaborative Information Manager server, as used in TIBCO Collaborative Information Manager before 8.1.0 and ActiveCatalog before 1.0.1, allows remote attackers to hijack web sessions via unspecified vectors.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Tibco ≫ Activecatalog Version <= 1.0
Tibco ≫ Collaborative Information Manager Version <= 8.0
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.31% | 0.67 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 4.3 | 8.6 | 2.9 |
AV:N/AC:M/Au:N/C:N/I:P/A:N
|
http://secunia.com/advisories/42791
http://www.securityfocus.com/bid/45691
http://www.securitytracker.com/id?1024942
http://www.tibco.com/multimedia/cim_advisory_20110105_tcm8-12765.txt
http://www.tibco.com/services/support/advisories/cim-advisory_20100105.jsp
http://www.vupen.com/english/advisories/2011/0037
http://osvdb.org/70374
https://exchange.xforce.ibmcloud.com/vulnerabilities/64523