How severe is CVE-2019-4330?

CVE-2019-4330 has a CVSS v3 score of 4.3 (MEDIUM).

CVE-2019-4330

Name: security_guardium_big_data_intelligence
Author: ibm

4.3MEDIUM

IBM Security Guardium Big Data Intelligence (SonarG) 4.0 does not set the secure attribute for cookies in HTTPS sessions, which could cause the user agent to send those cookies in plaintext over an HT

公開日: 10/29/2019更新日: 11/21/2024

説明

IBM Security Guardium Big Data Intelligence (SonarG) 4.0 does not set the secure attribute for cookies in HTTPS sessions, which could cause the user agent to send those cookies in plaintext over an HTTP session. IBM X-Force ID: 161210.

AI分析AIによる分析

影響を受ける製品

ibmsecurity_guardium_big_data_intelligence

4.0

参照

https://exchange.xforce.ibmcloud.com/vulnerabilities/161210
VDB EntryVendor Advisory
https://www.ibm.com/support/pages/node/1096384
PatchVendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/161210
VDB EntryVendor Advisory
https://www.ibm.com/support/pages/node/1096384
PatchVendor Advisory