Lucene search
K

4 matches found

Circl
Circl
added 2020/11/16 8:37 p.m.6 views

CVE-2020-4763

creationtimestamp| type| source ---|---|--- 2020-11-16 20:37:51+00:00| seen| https://t.me/cibsecurity/16378...

4.3CVSS4.5AI score0.00989EPSS
Exploits0References1
OSV
OSV
added 2020/11/16 5:15 p.m.3 views

CVE-2020-4763

IBM Sterling File Gateway 6.0.0.0 through 6.0.3.2 and 2.2.0.0 through 2.2.6.5 does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get the cookie values by sending a http:// link to a user or by planting this link in a site the user goes to. The...

4.3CVSS5.6AI score0.00989EPSS
Exploits0References2
CVE
CVE
added 2020/11/16 4:40 p.m.50 views

CVE-2020-4763

CVE-2020-4763 affects IBM Sterling File Gateway: vulnerable versions are 6.0.0.0–6.0.3.2 and 2.2.0.0–2.2.6.5_2, where authorization tokens and session cookies are missing the Secure attribute. This allows cookie values to be exposed if users click on an http link or visit a site containing such a...

4.3CVSS4.1AI score0.00989EPSS
Exploits0References2Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2020/11/13 10:0 p.m.24 views

Security Bulletin: Cookie Vulnerability Affects IBM Sterling File Gateway (CVE-2020-4763)

Summary IBM Sterling File Gateway has addressed a cookie vulnerability. Vulnerability Details CVEID: CVE-2020-4763 DESCRIPTION: IBM Sterling File Gateway does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get the cookie values by sending a http:...

4.3CVSS0.8AI score0.00989EPSS
Exploits0Affected Software1
Rows per page
Query Builder