CVE-2019-4152

Published: 2019-06-25T16:15Z

Last Modified: 2024-11-21T04:43Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

IBM Security Access Manager 9.0.1 through 9.0.6 does not invalidate session tokens in a timely manner. The lack of proper session expiration may allow attackers with local access to login into a closed browser session. IBM X-Force ID: 158515. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt