CVE-2015-1893 Information

Description

The IBM WebSphere DataPower XC10 appliance 2.1 before 2.1.0.3 allows remote attackers to hijack the sessions of arbitrary users and consequently obtain sensitive information or modify data via unspecified vectors.

Reference

http://www.securityfocus.com/bid/73916 http://www.securitytracker.com/id/1032025 http://www-01.ibm.com/support/docview.wss?uid=swg1IT07841 http://www-01.ibm.com/support/docview.wss?uid=swg21701337