CVE-2014-3060 Information

Description

Unspecified vulnerability on the IBM WebSphere DataPower XC10 appliance 2.5 allows remote attackers to obtain administrative privileges by leveraging access to an eXtreme Scale distributed ObjectGrid network and capturing a session cookie.

Reference

http://www-01.ibm.com/support/docview.wss?uid=swg1IT03476 http://www-01.ibm.com/support/docview.wss?uid=swg21685705 https://exchange.xforce.ibmcloud.com/vulnerabilities/93534