3 matches found
CVE-2020-4748
creationtimestamp| type| source ---|---|--- 2020-10-20 18:49:26+00:00| seen| https://t.me/cibsecurity/15412...
CVE-2020-4748
CVE-2020-4748 concerns IBM Spectrum Scale 5.0.0–5.0.5.2, where the Web UI is vulnerable to cross-site scripting, allowing arbitrary JavaScript in a trusted session and potential credential disclosure. The IBM bulletin confirms the affected range and notes a remediation: upgrade to code levels 5.0...
Security Bulletin: Multiple vulnerabilities affect the IBM Spectrum Scale GUI.
Summary Vulnerabilities exist in all levels of IBM Spectrum Scale GUI. A fix for this vulnerability is available. Vulnerability Details CVEID: CVE-2020-4749 DESCRIPTION: IBM Spectrum Scale does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get t...