How severe is CVE-2019-4330?

CVE-2019-4330 has a CVSS v3 score of 4.3 (MEDIUM).

CVE-2019-4330

Name: security_guardium_big_data_intelligence
Author: ibm

4.3MEDIUM

IBM Security Guardium Big Data Intelligence (SonarG) 4.0 does not set the secure attribute for cookies in HTTPS sessions, which could cause the user agent to send those cookies in plaintext over an HT

Опубликовано: 10/29/2019Обновлено: 11/21/2024

Описание

IBM Security Guardium Big Data Intelligence (SonarG) 4.0 does not set the secure attribute for cookies in HTTPS sessions, which could cause the user agent to send those cookies in plaintext over an HTTP session. IBM X-Force ID: 161210.

ИИ-АнализНа базе ИИ

Затронутые продукты

ibmsecurity_guardium_big_data_intelligence

4.0

Ссылки

https://exchange.xforce.ibmcloud.com/vulnerabilities/161210
VDB EntryVendor Advisory
https://www.ibm.com/support/pages/node/1096384
PatchVendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/161210
VDB EntryVendor Advisory
https://www.ibm.com/support/pages/node/1096384
PatchVendor Advisory