How severe is CVE-2019-4330?

CVE-2019-4330 has a CVSS v3 score of 4.3 (MEDIUM).

CVE-2019-4330

Name: security_guardium_big_data_intelligence
Author: ibm

4.3MEDIUM

IBM Security Guardium Big Data Intelligence (SonarG) 4.0 does not set the secure attribute for cookies in HTTPS sessions, which could cause the user agent to send those cookies in plaintext over an HT

发布于: 10/29/2019更新于: 11/21/2024

描述

IBM Security Guardium Big Data Intelligence (SonarG) 4.0 does not set the secure attribute for cookies in HTTPS sessions, which could cause the user agent to send those cookies in plaintext over an HTTP session. IBM X-Force ID: 161210.

AI分析AI驱动

受影响产品

ibmsecurity_guardium_big_data_intelligence

4.0

参考资料

https://exchange.xforce.ibmcloud.com/vulnerabilities/161210
VDB EntryVendor Advisory
https://www.ibm.com/support/pages/node/1096384
PatchVendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/161210
VDB EntryVendor Advisory
https://www.ibm.com/support/pages/node/1096384
PatchVendor Advisory