ГлавнаяУязвимости → CVE-2025-36359
8.1высокая

CVE-2025-36359

Описание

IBM DevOps Automation 1.0.1 and IBM DevOps Loop 1.0.2 does not invalidate session IDs after expiration which could allow an authenticated user to impersonate another user on the system.

Затрагиваемое ПО
Ibm Devops automationIbm Devops loop
CVSS
Балл8.1 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
Источники
https://www.ibm.com/support/pages/node/7277970