IBM Jazz Reporting Service
Moderate fix2 remedies
cpe:2.3:a:ibm:jazz_reporting_service:*:*:*:*:*:*:*
Moderate fix2 remedies
- 7.0.3
- 7.0.2
IBM Jazz Reporting Service Session Management Vulnerability Allowing User Impersonation
Vulnerability
Patched
A vulnerability exists in IBM Jazz Reporting Service versions 7.0.2 and 7.0.3, where the application fails to properly invalidate user sessions after logout. This flaw could enable an authenticated privileged user to impersonate another user on the system.
Impact
Exploitation of this vulnerability could lead to unauthorized user impersonation, allowing an attacker to assume the identity of another user within the application.
Remediation
Users on IBM Jazz Reporting Service versions 7.0.1, 7.0.2, or any version prior to 7.0.3 should upgrade to version 7.0.3, where this vulnerability has been addressed. Users can also upgrade to the latest 7.1.0 version. Instructions for downloading the 7.0.3 version are available on the IBM Support Fix Central website.
Added: Jun 9, 2025, 7:46 PM
Updated: Jun 9, 2025, 7:46 PM
Vulnerability Rating
Custom Algorithm
spread
0.3impact
1.3exploitability
4.4remediation
7.7relevance
0.0threat
0.0urgency
2.9incentive
1.7Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.