IBM InfoSphere Information Server Session Management Vulnerability Allowing User Impersonation

Vulnerability

A vulnerability exists in IBM InfoSphere Information Server 11.7 due to inadequate session management. The application fails to properly invalidate user sessions after logout, potentially allowing an authenticated user to impersonate another user on the system.

Impact

Exploitation of this vulnerability could lead to unauthorized user impersonation.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

3.1

impact

1.3

exploitability

5.2

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

3.1

impact

1.3

exploitability

5.2

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

IBM InfoSphere Information Server Session Management Vulnerability Allowing User Impersonation

Vulnerability

Impact

Affected Products

IBM InfoSphere Information Server

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating