CVE-2013-2997

LOW

—CVSS v3

1.7CVSS v2

0.08% EPSS (exploit probability)

CWE-264CWE

Description

IBM Security AppScan Enterprise before 8.7 does not invalidate the session context upon a logout action, which allows remote attackers to hijack sessions by leveraging an unattended workstation.

Affected routers (0)

No routers currently mapped to this CVE in our database.

External references

NIST NVD
MITRE CVE