5 matches found
CVE-2019-13498
One Identity Cloud Access Manager 8.1.3 does not use HTTP Strict Transport Security HSTS, which may allow man-in-the-middle MITM attacks. This issue is fixed in version 8.1.4...
Exploit for Cleartext Transmission of Sensitive Information in Oneidentity Cloud_Access_Manager
CVE-2019-13498 Exploit Title: MITM - Missing HSTS causing cre...
CVE-2019-13498
One Identity Cloud Access Manager 8.1.3 does not use HTTP Strict Transport Security HSTS, which may allow man-in-the-middle MITM attacks. This issue is fixed in version 8.1.4...
CVE-2019-13498
One Identity Cloud Access Manager 8.1.3 does not use HTTP Strict Transport Security HSTS, which may allow man-in-the-middle MITM attacks. This issue is fixed in version 8.1.4...
CVE-2019-13498
The CVE-2019-13498 issue affects One Identity Cloud Access Manager 8.1.3, where HTTP Strict Transport Security (HSTS) is not implemented. This absence can enable MITM-style attacks by downgrading protections, with the impact described as enabling/intercepting sensitive credential-related traffic....