4 matches found
CVE-2020-4763
creationtimestamp| type| source ---|---|--- 2020-11-16 20:37:51+00:00| seen| https://t.me/cibsecurity/16378...
CVE-2020-4763
IBM Sterling File Gateway 6.0.0.0 through 6.0.3.2 and 2.2.0.0 through 2.2.6.5 does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get the cookie values by sending a http:// link to a user or by planting this link in a site the user goes to. The...
CVE-2020-4763
CVE-2020-4763 affects IBM Sterling File Gateway: vulnerable versions are 6.0.0.0–6.0.3.2 and 2.2.0.0–2.2.6.5_2, where authorization tokens and session cookies are missing the Secure attribute. This allows cookie values to be exposed if users click on an http link or visit a site containing such a...
Security Bulletin: Cookie Vulnerability Affects IBM Sterling File Gateway (CVE-2020-4763)
Summary IBM Sterling File Gateway has addressed a cookie vulnerability. Vulnerability Details CVEID: CVE-2020-4763 DESCRIPTION: IBM Sterling File Gateway does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get the cookie values by sending a http:...