Vulnerability Name:
CVE-2013-2997 (CCN-84066)
Assigned:
2013-06-14
Published:
2013-06-14
Updated:
2017-08-29
Summary:
IBM Security AppScan Enterprise before 8.7 does not invalidate the session context upon a logout action, which allows remote attackers to hijack sessions by leveraging an unattended workstation.
CVSS v3 Severity:
2.8 Low
(CCN CVSS v3.1 Vector:
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N
)
Exploitability Metrics:
Attack Vector (AV):
Local
Attack Complexity (AC):
Low
Privileges Required (PR):
Low
User Interaction (UI):
Required
Scope:
Scope (S):
Unchanged
Impact Metrics:
Confidentiality (C):
Low
Integrity (I):
None
Availibility (A):
None
CVSS v2 Severity:
1.7 Low
(CVSS v2 Vector:
AV:L/AC:L/Au:S/C:P/I:N/A:N
)
1.5 Low
(Temporal CVSS v2 Vector:
AV:L/AC:L/Au:S/C:P/I:N/A:N/E:H/RL:OF/RC:C
)
Exploitability Metrics:
Access Vector (AV):
Local
Access Complexity (AC):
Low
Authentication (Au):
Single_Instance
Impact Metrics:
Confidentiality (C):
Partial
Integrity (I):
None
Availibility (A):
None
1.7 Low
(CCN CVSS v2 Vector:
AV:L/AC:L/Au:S/C:P/I:N/A:N
)
1.5 Low
(CCN Temporal CVSS v2 Vector:
AV:L/AC:L/Au:S/C:P/I:N/A:N/E:H/RL:OF/RC:C
)
Exploitability Metrics:
Access Vector (AV):
Local
Access Complexity (AC):
Low
Athentication (Au):
Single_Instance
Impact Metrics:
Confidentiality (C):
Partial
Integrity (I):
None
Availibility (A):
None
Vulnerability Type:
CWE-264
Vulnerability Consequences:
Other
References:
Source: MITRE
Type: CNA
CVE-2013-2997
Source: CCN
Type: IBM Security Bulletin 1640352
Multiple vulnerabilities in IBM Security AppScan Enterprise (CVE-2013-0531, CVE-2013-0440, CVE-2013-2997)
Source: CONFIRM
Type: Vendor Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg21640352
Source: XF
Type: UNKNOWN
ibm-appscan-cve20132997-spoofing(84066)
Source: XF
Type: UNKNOWN
appscan-cve20132997-session-impersonation(84066)
Vulnerable Configuration:
Configuration 1
:
cpe:/a:ibm:security_appscan:5.6.0.0:-:enterprise:*:*:*:*:*
OR
cpe:/a:ibm:security_appscan:6.0.0.0:-:enterprise:*:*:*:*:*
OR
cpe:/a:ibm:security_appscan:6.0.1.0:-:enterprise:*:*:*:*:*
OR
cpe:/a:ibm:security_appscan:6.0.2.0:-:enterprise:*:*:*:*:*
OR
cpe:/a:ibm:security_appscan:6.1.1.0:-:enterprise:*:*:*:*:*
OR
cpe:/a:ibm:security_appscan:8.0.0.0:-:enterprise:*:*:*:*:*
OR
cpe:/a:ibm:security_appscan:8.0.0.1:-:enterprise:*:*:*:*:*
OR
cpe:/a:ibm:security_appscan:8.0.0.2:-:enterprise:*:*:*:*:*
OR
cpe:/a:ibm:security_appscan:8.0.1.0:-:enterprise:*:*:*:*:*
OR
cpe:/a:ibm:security_appscan:8.0.1.1:-:enterprise:*:*:*:*:*
OR
cpe:/a:ibm:security_appscan:8.0.11:-:enterprise:*:*:*:*:*
OR
cpe:/a:ibm:security_appscan:8.5.0.0:-:enterprise:*:*:*:*:*
OR
cpe:/a:ibm:security_appscan:8.5.0.1:-:enterprise:*:*:*:*:*
OR
cpe:/a:ibm:security_appscan:8.6.0.0:-:enterprise:*:*:*:*:*
OR
cpe:/a:ibm:security_appscan:8.6.0.1:-:enterprise:*:*:*:*:*
OR
cpe:/a:ibm:security_appscan:*:-:enterprise:*:*:*:*:*
(Version <= 8.6.0.2)
Configuration CCN 1
:
cpe:/a:ibm:security_appscan:5.6.0.0:-:enterprise:*:*:*:*:*
OR
cpe:/a:ibm:security_appscan:8.0.0.0:-:enterprise:*:*:*:*:*
OR
cpe:/a:ibm:security_appscan:8.5.0.0:-:enterprise:*:*:*:*:*
OR
cpe:/a:ibm:security_appscan:8.6.0.0:-:enterprise:*:*:*:*:*
OR
cpe:/a:ibm:security_appscan:8.7.0.0:-:enterprise:*:*:*:*:*
Denotes that component is vulnerable
BACK
ibm
security appscan 5.6.0.0 -
ibm
security appscan 6.0.0.0 -
ibm
security appscan 6.0.1.0 -
ibm
security appscan 6.0.2.0 -
ibm
security appscan 6.1.1.0 -
ibm
security appscan 8.0.0.0 -
ibm
security appscan 8.0.0.1 -
ibm
security appscan 8.0.0.2 -
ibm
security appscan 8.0.1.0 -
ibm
security appscan 8.0.1.1 -
ibm
security appscan 8.0.11 -
ibm
security appscan 8.5.0.0 -
ibm
security appscan 8.5.0.1 -
ibm
security appscan 8.6.0.0 -
ibm
security appscan 8.6.0.1 -
ibm
security appscan * -
ibm
security appscan 5.6.0.0 -
ibm
security appscan 8.0.0.0 -
ibm
security appscan 8.5.0.0 -
ibm
security appscan 8.6.0.0 -
ibm
security appscan 8.7.0.0 -
Denotes that component is vulnerable