2 matches found
CVE-2020-4315
IBM Business Automation Content Analyzer on Cloud 1.0 does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get the cookie values by sending a http:// link to a user or by planting this link in a site the user goes to. The cookie will be sent to th...
CVE-2020-4315
This CVE (CVE-2020-4315) affects IBM Business Automation Content Analyzer on Cloud 1.0. The vulnerability arises because the authorization tokens or session cookies do not set the Secure attribute, allowing cookies to be exposed when a user visits an http link, enabling an attacker to snoop traff...