CVE-2019-4439: IBM Cloud Private 3.1.0, 3.1.1, and 3.1.2 does not invalidate session after logout which could allow a local user to impersonate another user on the system…

medium5.3CVSS 3.1

AVLACLPRLUINSUCLILAL

IBM Cloud Private 3.1.0, 3.1.1, and 3.1.2 does not invalidate session after logout which could allow a local user to impersonate another user on the system. IBM X-Force ID: 162949.

Affected

3 ranges

Vendor	Product	Version range	Fixed in
ibm	cloud_private	—	—
ibm	cloud_private	—	—
ibm	cloud_private	—	—