CVE-2018-1375

Vulnerability

IBM Security Guardium Big Data Intelligence (SonarG) version 3.1 does not update the session identifier after a successful authentication. This flaw allows an attacker to potentially force a user to utilize a known session cookie, leading to session fixation or hijacking [1]. The vulnerability is present in the session management logic of the application.

Exploitation

An attacker must first obtain a valid session identifier (e.g., by visiting the application or crafting a malicious link) and then trick an authenticated user into using that same session identifier before or during login. This can be achieved through social engineering, cross-site scripting, or other means that force the user to accept a predetermined cookie. After the user authenticates, the session identifier remains unchanged, granting the attacker access to the authenticated session [1].

Impact

Successful exploitation allows an attacker to hijack an authenticated user's session, leading to unauthorized access to sensitive information. The CVSS v3.0 base score is 5.9 (Medium) with a vector of AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N, indicating high confidentiality impact but no integrity or availability impact [1].

Mitigation

IBM has addressed this vulnerability in a security update. Users should apply the latest fix as described in the IBM Security Bulletin [1]. No workarounds are available; the bulletin explicitly states "Workarounds and Mitigations: None" [1].