CVE-2013-5450 Information

Description

IBM Security AppScan Enterprise 8.5 through 8.7.0.1 when Jazz authentication is enabled allows man-in-the-middle attackers to obtain sensitive information or modify data by leveraging an improperly protected URL to obtain a session token.

Reference

http://www-01.ibm.com/support/docview.wss?uid=swg21655578 https://exchange.xforce.ibmcloud.com/vulnerabilities/88190