How severe is CVE-2022-35284?

CVE-2022-35284 has a CVSS v3 score of 7.5 (HIGH).

CVE-2022-35284

Name: security_verify_information_queue
Author: ibm

7.5HIGH

IBM Security Verify Information Queue 10.0.2 could disclose sensitive information due to a missing or insecure SameSite attribute for a sensitive cookie. IBM X-Force ID: 230811.

Publicado: 7/25/2022Actualizado: 11/21/2024

Descripción

IBM Security Verify Information Queue 10.0.2 could disclose sensitive information due to a missing or insecure SameSite attribute for a sensitive cookie. IBM X-Force ID: 230811.

Análisis IAImpulsado por IA

Productos Afectados

ibmsecurity_verify_information_queue

10.0.2

Referencias

https://exchange.xforce.ibmcloud.com/vulnerabilities/230811
VDB EntryVendor Advisory
https://www.ibm.com/support/pages/node/6606663
PatchVendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/230811
VDB EntryVendor Advisory
https://www.ibm.com/support/pages/node/6606663
PatchVendor Advisory