VYPR
Medium severity5.0NVD Advisory· Published Nov 25, 2016· Updated Jun 17, 2026

CVE-2016-0318

CVE-2016-0318

Description

Lifecycle Query Engine (LQE) in IBM Jazz Reporting Service 6.0 and 6.0.1 before 6.0.1 iFix006 does not destroy a Session ID upon a logout action, which allows remote attackers to obtain access by leveraging an unattended workstation.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3
  • cpe:2.3:a:ibm:jazz_reporting_service:6.0:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:ibm:jazz_reporting_service:6.0:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:jazz_reporting_service:6.0.1:*:*:*:*:*:*:*
    • (no CPE)range: <6.0.1 iFix006

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.