Loading market data...
← Back to CVE feed

CVE-2025-36359

HIGH CVSS 8.1 View on NVD ↗

Description

IBM DevOps Automation 1.0.1 and IBM DevOps Loop 1.0.2 does not invalidate session IDs after expiration which could allow an authenticated user to impersonate another user on the system.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
Published: Jun 30, 2026 21:16 UTC Modified: Jul 01, 2026 14:16 UTC