The console on IBM WebSphere DataPower XC10 appliances 2.1.0 and 2.5.0 does not properly process logoff actions, which has unspecified impact and remote attack vectors. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.
Information Disclosure
IBM
Websphere Datapower Xc10 Appliance
Websphere Datapower Xc10 Appliance Firmware
NVD
CVSS 2.0
10.0
EPSS
0.5%