{"containers": {"cna": {"affected": [{"product": "Integration Bus", "vendor": "IBM", "versions": [{"status": "affected", "version": "9.0"}, {"status": "affected", "version": "10.0"}]}], "datePublic": "2018-01-17T00:00:00.000Z", "descriptions": [{"lang": "en", "value": "IBM Integration Bus 9.0 and 10.0 could allow an attacker that has captured a valid session id to hijack another users session during a small timeframe before the session times out. IBM X-Force ID: 134164."}], "problemTypes": [{"descriptions": [{"description": "Gain Access", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-01-23T10:57:01.000Z", "orgId": "9a959283-ebb5-44b6-b705-dcc2bbced522", "shortName": "ibm"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "http://www.ibm.com/support/docview.wss?uid=swg22012642"}, {"name": "102760", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/102760"}, {"tags": ["x_refsource_MISC"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/134164"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "psirt@us.ibm.com", "DATE_PUBLIC": "2018-01-17T00:00:00", "ID": "CVE-2017-1693", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "Integration Bus", "version": {"version_data": [{"version_value": "9.0"}, {"version_value": "10.0"}]}}]}, "vendor_name": "IBM"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "IBM Integration Bus 9.0 and 10.0 could allow an attacker that has captured a valid session id to hijack another users session during a small timeframe before the session times out. IBM X-Force ID: 134164."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "Gain Access"}]}]}, "references": {"reference_data": [{"name": "http://www.ibm.com/support/docview.wss?uid=swg22012642", "refsource": "CONFIRM", "url": "http://www.ibm.com/support/docview.wss?uid=swg22012642"}, {"name": "102760", "refsource": "BID", "url": "http://www.securityfocus.com/bid/102760"}, {"name": "https://exchange.xforce.ibmcloud.com/vulnerabilities/134164", "refsource": "MISC", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/134164"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-05T13:39:31.879Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www.ibm.com/support/docview.wss?uid=swg22012642"}, {"name": "102760", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/102760"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/134164"}]}]}, "cveMetadata": {"assignerOrgId": "9a959283-ebb5-44b6-b705-dcc2bbced522", "assignerShortName": "ibm", "cveId": "CVE-2017-1693", "datePublished": "2018-01-19T14:00:00.000Z", "dateReserved": "2016-11-30T00:00:00.000Z", "dateUpdated": "2024-09-16T18:38:40.340Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:ibm:integration_bus:9.0.0.0:*:*:*:*:*:*:*", "matchCriteriaId": "D627B445-2980-4AC2-B674-CA4C472AB214", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:integration_bus:9.0.0.1:*:*:*:*:*:*:*", "matchCriteriaId": "725E3F95-4096-497D-8F2A-02C185ACF8CB", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:integration_bus:9.0.0.2:*:*:*:*:*:*:*", "matchCriteriaId": "ACB80DEF-E09A-4B51-96B8-75F0AD9C6499", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:integration_bus:9.0.0.3:*:*:*:*:*:*:*", "matchCriteriaId": "576FE339-BD08-4994-B31A-15BC521650E7", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:integration_bus:9.0.0.4:*:*:*:*:*:*:*", "matchCriteriaId": "371E03D4-BDD9-40A8-B24B-43C320C9F3E5", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:integration_bus:9.0.0.5:*:*:*:*:*:*:*", "matchCriteriaId": "C319D81D-E66B-47E6-A731-D5074314B94B", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:integration_bus:9.0.0.6:*:*:*:*:*:*:*", "matchCriteriaId": "B3A6D9A8-9196-4358-B2ED-BD103AB237F8", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:integration_bus:9.0.0.7:*:*:*:*:*:*:*", "matchCriteriaId": "408B31F1-F945-4CEB-B6D4-2666A6B8B2C6", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:integration_bus:9.0.0.8:*:*:*:*:*:*:*", "matchCriteriaId": "16DF80F1-4163-46E0-A304-BD01C11EA658", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:integration_bus:10.0:*:*:*:*:*:*:*", "matchCriteriaId": "92E6A5C9-29C2-458D-AA67-E74945E2012F", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:integration_bus:10.0.0.0:*:*:*:*:*:*:*", "matchCriteriaId": "F96E7A0A-47BD-42EC-A66C-E1F64AD6CA55", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:integration_bus:10.0.0.1:*:*:*:*:*:*:*", "matchCriteriaId": "6309A833-9490-494A-BE3A-BA79133BD6E7", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:integration_bus:10.0.0.2:*:*:*:*:*:*:*", "matchCriteriaId": "50810A19-BEDC-4DF6-BA82-DAA1F96D5400", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:integration_bus:10.0.0.3:*:*:*:*:*:*:*", "matchCriteriaId": "97486673-4740-4F4F-8956-73C06B477096", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:integration_bus:10.0.0.4:*:*:*:*:*:*:*", "matchCriteriaId": "79E917E9-DE5E-482A-9A20-823DF475BE66", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:integration_bus:10.0.0.5:*:*:*:*:*:*:*", "matchCriteriaId": "FC25F42C-82EC-44EE-94AC-E85F428460D2", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:integration_bus:10.0.0.6:*:*:*:*:*:*:*", "matchCriteriaId": "FA2BBC72-E5AD-4FAD-8F72-264794847D96", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:integration_bus:10.0.0.7:*:*:*:*:*:*:*", "matchCriteriaId": "B3797766-D2E5-4645-A793-ABA12A10CF10", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:integration_bus:10.0.0.8:*:*:*:*:*:*:*", "matchCriteriaId": "1486EFCC-5D66-4172-9D57-55AB25C77B7D", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:integration_bus:10.0.0.9:*:*:*:*:*:*:*", "matchCriteriaId": "3770768C-96D0-4D8E-8AB5-0347DBE01AF4", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "IBM Integration Bus 9.0 and 10.0 could allow an attacker that has captured a valid session id to hijack another users session during a small timeframe before the session times out. IBM X-Force ID: 134164."}, {"lang": "es", "value": "IBM Integration Bus 9.0 y 10.0 podr\u00eda permitir que un atacante que haya capturado un id de sesi\u00f3n v\u00e1lido secuestre la sesi\u00f3n de otro usuario durante una peque\u00f1a franja de tiempo antes de que la sesi\u00f3n expire. IBM X-Force ID: 134164."}], "id": "CVE-2017-1693", "lastModified": "2024-11-21T03:22:13.700", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 5.6, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L", "version": "3.0"}, "exploitabilityScore": 2.2, "impactScore": 3.4, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2018-01-19T14:29:00.213", "references": [{"source": "psirt@us.ibm.com", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.ibm.com/support/docview.wss?uid=swg22012642"}, {"source": "psirt@us.ibm.com", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securityfocus.com/bid/102760"}, {"source": "psirt@us.ibm.com", "tags": ["VDB Entry"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/134164"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.ibm.com/support/docview.wss?uid=swg22012642"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securityfocus.com/bid/102760"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["VDB Entry"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/134164"}], "sourceIdentifier": "psirt@us.ibm.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-613"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}

{}