CVE-2022-34307 – IBM CICS TX 11.1 does not set the secure attribute on authorization tokens or session cook …

1 August 2022

Vuln ID: CVE-2022-34307

Published: 2022-08-01 16:15:07Z

Description: IBM CICS TX 11.1 does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get the cookie values by sending a http:// link to a user or by planting this link in a site the user goes to. The cookie will be sent to the insecure link and the attacker can then obtain the cookie value by snooping the traffic. IBM X-Force ID: 229436.

Source: NVD.NIST.GOV

Date:

1 August 2022

Categorie(s):

NVD

Tag(s):

NVD

Dropzone AI nabs $16.85M for its automated breach investigation platform25 April 2024
Millions of IPs remain infected by USB worm years after its creators left it for dead25 April 2024
What is ThreatLocker Cybersecurity Used For & How to Protect Your Digital Future?25 April 2024
Zombie worm continues to infect millions of IPs years after it was left for dead25 April 2024
How to Avoid Romance Scams 25 April 2024