Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/06/30 1:34 a.m.19 views

CVE-2025-36026

IBM Datacap 9.1.7, 9.1.8, and 9.1.9 does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get the cookie values by sending a http:// link to a user or by planting this link in a site the user goes to. The cookie will be sent to the insecure link an...

4.3CVSS6.7AI score0.00138EPSS
Exploits0References1
OSV
OSV
added 2025/06/28 1:15 a.m.5 views

CVE-2025-36026

IBM Datacap 9.1.7, 9.1.8, and 9.1.9 does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get the cookie values by sending a http:// link to a user or by planting this link in a site the user goes to. The cookie will be sent to the insecure link an...

4.3CVSS5.6AI score0.00138EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/06/28 12:49 a.m.5 views

CVE-2025-36026 IBM Datacap information disclosure

IBM Datacap 9.1.7, 9.1.8, and 9.1.9 does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get the cookie values by sending a http:// link to a user or by planting this link in a site the user goes to. The cookie will be sent to the insecure link an...

4.3CVSS6.6AI score0.00138EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/06/28 12:49 a.m.10 views

CVE-2025-36026 IBM Datacap information disclosure

IBM Datacap 9.1.7, 9.1.8, and 9.1.9 does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get the cookie values by sending a http:// link to a user or by planting this link in a site the user goes to. The cookie will be sent to the insecure link an...

4.3CVSS0.00138EPSS
Exploits0References1
Rows per page
Query Builder