Severity

Low

Analysis Summary

IBM Security Identity Governance and Intelligence 5.2.6 Virtual Appliance could allow a remote attacker to obtain sensitive information using man in the middle techniques due to not properly invalidating session tokens.

Impact

Information disclosure

Affected Vendors

IBM

Affected Products

IBM Security Identity Governance and Intelligence 5.2.6

Remediation

Refer to IBM Security Bulletin 6255972 for patch, upgrade or suggested workaround information.

IBM Security Bulletin 6255972 (Security Identity Governance and Intelligence)