Vulnerabilities > CVE-2015-1993 - Unspecified vulnerability in IBM Security Qradar Incident Forensics

047910
CVSS 0.0 - NONE
Attack vector
UNKNOWN
Attack complexity
UNKNOWN
Privileges required
UNKNOWN
Confidentiality impact
UNKNOWN
Integrity impact
UNKNOWN
Availability impact
UNKNOWN
ibm
NVD
Published: 2015-11-08
Updated: 2024-11-21

Summary

IBM Security QRadar Incident Forensics 7.2.x before 7.2.5 Patch 5 does not set the secure flag for unspecified cookies in an https session, which makes it easier for remote attackers to capture these cookies by intercepting their transmission within an http session.

Vulnerable Configurations

Part Description Count
Application
Ibm
6

Seebug

bulletinFamilyexploit
descriptionNo description provided by source.
idSSV:89761
last seen2017-11-19
modified2015-11-16
published2015-11-16
reporterRoot
titleIBM Security QRadar Incident Forensics中间人攻击漏洞(CVE-2015-1993)

References