CVE-2014-4756

EUVD-2014-4675
The Administration and Reporting Tool in IBM Rational License Key Server (RLKS) 8.1.4.x before 8.1.4.4 allows remote authenticated users to hijack sessions via unspecified vectors.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
3.5 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:S/C:N/I:P/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 50%
Affected Products (NVD)
VendorProductVersion
ibmrational_license_key_server
8.1.4
ibmrational_license_key_server
8.1.4.2
ibmrational_license_key_server
8.1.4.3
𝑥
= Vulnerable software versions
References
http://secunia.com/advisories/60709
http://www-01.ibm.com/support/docview.wss?uid=swg21681449
http://www-01.ibm.com/support/docview.wss?uid=swg24038045
http://www.securityfocus.com/bid/69645
https://exchange.xforce.ibmcloud.com/vulnerabilities/94444
http://secunia.com/advisories/60709
http://www-01.ibm.com/support/docview.wss?uid=swg21681449
http://www-01.ibm.com/support/docview.wss?uid=swg24038045
http://www.securityfocus.com/bid/69645
https://exchange.xforce.ibmcloud.com/vulnerabilities/94444