Missing access control in ForgeRock Access Management 7.1.0 and previous versions versions on all platforms allows remote unauthenticated malicious users to hijack sessions, including potentially admin-level sessions. This issue affects: ForgeRock Access Management 7.1 versions before 7.1.1; 6.5 versions before 6.5.4; all previous versions.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
forgerock access management 5.5.2 |
||
forgerock access management 6.0.0 |
||
forgerock access management 6.0.0.1 |
||
forgerock access management 6.0.0.2 |
||
forgerock access management 6.0.0.3 |
||
forgerock access management 6.0.0.4 |
||
forgerock access management 6.0.0.6 |
||
forgerock access management 6.0.0.7 |
||
forgerock access management 6.5.0 |
||
forgerock access management 6.5.0.1 |
||
forgerock access management 6.5.0.2 |
||
forgerock access management 6.5.1 |
||
forgerock access management 6.5.2.1 |
||
forgerock access management 6.5.2.2 |
||
forgerock access management 6.5.2.3 |
||
forgerock access management 6.5.3 |
||
forgerock access management 7.0.0 |
||
forgerock access management 7.0.1 |
||
forgerock access management 7.0.2 |
||
forgerock access management 7.1.0 |