Vulnerability Details : CVE-2004-2558
Unspecified vulnerability in IBM Tivoli SecureWay Policy Director 3.8, Access Manager for e-business 3.9 to 5.1, Access Manager Identity Manager Solution 5.1, Configuration Manager 4.2, Configuration Manager for Automated Teller Machines 2.1.0, and IBM WebSphere Everyplace Server, Service Provider Offering for Multi-platforms 2.1.3 to 2.15 allow remote attackers to hijack sessions of authenticated users via unknown attack vectors involving certain cookies, aka "Potential Credential Impersonation Attack."
Products affected by CVE-2004-2558
- cpe:2.3:a:ibm:tivoli_secureway_policy_director:3.8:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:tivoli_access_manager_for_e-business:3.9:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:tivoli_access_manager_for_e-business:4.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:tivoli_access_manager_for_e-business:5.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:tivoli_access_manager_identity_manager_solution:5.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:tivoli_configuration_manager:4.2:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:tivoli_configuration_manager_for_atm:2.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_everyplace_server:2.1.3:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_everyplace_server:2.1.4:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_everyplace_server:2.1.5:*:*:*:*:*:*:*
Threat overview for CVE-2004-2558
Top countries where our scanners detected CVE-2004-2558
Top open port discovered on systems with this issue
80
IPs affected by CVE-2004-2558 1
Find out if you* are
affected by CVE-2004-2558!
*Directly or indirectly through your vendors, service providers and 3rd parties.
Powered by
attack surface intelligence
from SecurityScorecard.
Exploit prediction scoring system (EPSS) score for CVE-2004-2558
1.24%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 86 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2004-2558
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
7.5
|
HIGH | AV:N/AC:L/Au:N/C:P/I:P/A:P |
10.0
|
6.4
|
NIST |
References for CVE-2004-2558
Jump to