Security Bulletin: Vulnerability in WebSphere Commerce REST services (CVE-2013-2994)
IBM PSIRT 270004PFE3 email@example.com | | Tags:  psirtindustry psirtmedium
0 Comments | 1,219 Visits
In certain cases, WebSphere Commerce REST services may not properly invalidate a user's session, possibly allowing an attacker to run REST services as another user with a valid session.
Affected product(s) and affected version(s):
Refer to the following reference URLs for remediation and additional vulnerability details.