3 matches found
CVE-2021-29769
creationtimestamp| type| source ---|---|--- 2021-07-26 16:11:33+00:00| seen| https://t.me/cibsecurity/26487...
CVE-2021-29769
The CVE-2021-29769 issue affects IBM i2 Analyze Premium (IBM i2 Analyze 4.3.0, 4.3.1, 4.3.2). Root cause: authorization tokens and session cookies lack the Secure attribute, enabling cookie values to be leaked if a user visits an HTTP link or a compromised site. Impact: information disclosure via...
Security Bulletin: IBM i2 Analyze missing security header (CVE-2021-29769)
Summary Some secure header options were missing in communication with the i2 Analyze server. Vulnerability Details CVEID: CVE-2021-29769 DESCRIPTION: IBM i2 Analyst's Notebook Premium does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get the...