CVE-2020-4914
published 2023-05-05CVE-2020-4914: IBM Cloud Pak System Suite 2.3.3.0 through 2.3.3.5 does not invalidate session after logout which could allow a local user to impersonate another user on the…
medium5.5CVSS 3.1
AVLACLPRLUINSUCNIHAN
IBM Cloud Pak System Suite 2.3.3.0 through 2.3.3.5 does not invalidate session after logout which could allow a local user to impersonate another user on the system. IBM X-Force ID: 191290.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ibm | cloud_pak_system | >= 2.3.3.0 < 2.3.3.6 | 2.3.3.6 |
| ibm | cloud_pak_system_software_suite | 2.3.3.0 – 2.3.3.5 | — |