How severe is CVE-2019-4330?

CVE-2019-4330 has a CVSS v3 score of 4.3 (MEDIUM).

CVE-2019-4330

Name: security_guardium_big_data_intelligence
Author: ibm

4.3MEDIUM

IBM Security Guardium Big Data Intelligence (SonarG) 4.0 does not set the secure attribute for cookies in HTTPS sessions, which could cause the user agent to send those cookies in plaintext over an HT

Published: 10/29/2019Updated: 11/21/2024

Description

IBM Security Guardium Big Data Intelligence (SonarG) 4.0 does not set the secure attribute for cookies in HTTPS sessions, which could cause the user agent to send those cookies in plaintext over an HTTP session. IBM X-Force ID: 161210.

AI AnalysisPowered by AI

Affected Products

ibmsecurity_guardium_big_data_intelligence

4.0

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/161210
VDB EntryVendor Advisory
https://www.ibm.com/support/pages/node/1096384
PatchVendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/161210
VDB EntryVendor Advisory
https://www.ibm.com/support/pages/node/1096384
PatchVendor Advisory