CVE-2020-4555
published 2020-12-21CVE-2020-4555: IBM Financial Transaction Manager 3.0.6 and 3.1.0 does not invalidate session after logout which could allow an authenticated user to impersonate another user…
medium5.4CVSS 3.1
AVNACLPRLUINSUCLILAN
IBM Financial Transaction Manager 3.0.6 and 3.1.0 does not invalidate session after logout which could allow an authenticated user to impersonate another user on the system. IBM X-Force ID: 183328.
Affected
11 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ibm | financial_transaction_manager | — | — |
| ibm | financial_transaction_manager | — | — |
| ibm | financial_transaction_manager | — | — |
| ibm | financial_transaction_manager | — | — |
| ibm | financial_transaction_manager | — | — |
| ibm | financial_transaction_manager | — | — |
| ibm | financial_transaction_manager | — | — |
| ibm | financial_transaction_manager | — | — |
| ibm | financial_transaction_manager | — | — |
| ibm | financial_transaction_manager | — | — |
| ibm | financial_transaction_manager | — | — |