IBM Security QRadar EDR 3.12 does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get the cookie values by sending a http:// link to a user or by planting this link in a site the user goes to. The cookie will be sent to the insecure link and the attacker can then obtain the cookie value by snooping the traffic. IBM X-Force ID: 257702.
References
Link | Resource |
---|---|
https://exchange.xforce.ibmcloud.com/vulnerabilities/257702 | VDB Entry |
https://www.ibm.com/support/pages/node/7159770 | Vendor Advisory |
Configurations
History
02 Aug 2024, 21:06
Type | Values Removed | Values Added |
---|---|---|
References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/257702 - VDB Entry | |
References | () https://www.ibm.com/support/pages/node/7159770 - Vendor Advisory | |
CPE | cpe:2.3:a:ibm:security_qradar_edr:3.12:*:*:*:*:*:*:* | |
First Time |
Ibm
Ibm security Qradar Edr |
11 Jul 2024, 13:05
Type | Values Removed | Values Added |
---|---|---|
Summary |
|
10 Jul 2024, 16:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-07-10 16:15
Updated : 2024-08-02 21:06
NVD link : CVE-2023-33860
Mitre link : CVE-2023-33860
CVE.ORG link : CVE-2023-33860
JSON object : View
Products Affected
ibm
- security_qradar_edr
CWE
CWE-614
Sensitive Cookie in HTTPS Session Without 'Secure' Attribute