IBM Sterling B2B Integrator i IBM Sterling File Gateway w wersjach 6.0.0.0 do 6.1.2.7, 6.2.0.0 do 6.2.0.5 oraz 6.2.1.1 mogą ujawnić wrażliwe informacje z powodu braku lub nieprawidłowej konfiguracji atrybutu SameSite dla wrażliwego cookie'a.
▸ Pokaż oryginał (EN)
IBM Sterling B2B Integrator and IBM Sterling File Gateway 6.0.0.0 through 6.1.2.7 and 6.2.0.0 through 6.2.0.5 and 6.2.1.1 could disclose sensitive information due to a missing or insecure SameSite attribute for a sensitive cookie.
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:NIBM Sterling B2b Integrator
APPIbm6.2.1.16.0.0.0 – 6.1.2.7_2 (bez)6.2.0.0 – 6.2.0.5_1 (bez)IBM Sterling File Gateway
APPIbm6.2.1.16.0.0.0 – 6.1.2.7_2 (bez)6.2.0.0 – 6.2.0.5_1 (bez)
Powiązane podatności
Serialized-object interfaces in certain IBM analytics, business solutions, cognitive, IT infrastructure, and m...
IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.0.3.5, 6.1.0.0 through 6.1.0.4, and 6.1.1.0 thr...
IBM Sterling B2B Integrator Standard Edition 5.2.6.0 through 6.1.1.0 is vulnerable to SQL injection. A remote ...
IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.1.1.0 is vulnerable to SQL injection. A remote ...
IBM Sterling B2B Integrator and and IBM Sterling File Gateway 6.1.0.0 through 6.1.2.7_2, 6.2.0.0 through 6.2.0...