Medium severity5.0NVD Advisory· Published Nov 25, 2016· Updated May 6, 2026
CVE-2016-0318
CVE-2016-0318
Description
Lifecycle Query Engine (LQE) in IBM Jazz Reporting Service 6.0 and 6.0.1 before 6.0.1 iFix006 does not destroy a Session ID upon a logout action, which allows remote attackers to obtain access by leveraging an unattended workstation.
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2- www-01.ibm.com/support/docview.wssnvdPatchVendor Advisory
- www.securityfocus.com/bid/92466nvd
News mentions
0No linked articles in our index yet.