CVE-2014-4830
IBM QRadar, QRM, and QVM are affected by CVE-2014-4830 due to failure to set the HTTPOnly flag on the session cookie in web interfaces. This allows script access to the cookie, potentially exposing sensitive information. Affected versions include IBM QRadar/QRM/QVM 7.2 MR2 and QRadar/QRM 7.1 MR1,...