IBM Security Guardium Big Data Intelligence (SonarG) 4.0 does not set the secure attribute for cookies in HTTPS sessions, which could cause the user agent to send those cookies in plaintext over an HTTP session. IBM X-Force ID: 161210.
References
Link | Resource |
---|---|
https://exchange.xforce.ibmcloud.com/vulnerabilities/161210 | VDB Entry Vendor Advisory |
https://www.ibm.com/support/pages/node/1096384 | Patch Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: ibm
Published: 2019-10-22T00:00:00
Updated: 2019-10-28T23:36:10
Reserved: 2019-01-03T00:00:00
Link: CVE-2019-4330
JSON object: View
NVD Information
Status : Analyzed
Published: 2019-10-29T00:15:11.497
Modified: 2022-12-13T02:04:34.820
Link: CVE-2019-4330
JSON object: View
Redhat Information
No data.
CWE