2 matches found
CVE-2019-4616
CVE-2019-4616 affects IBM Cloud Automation Manager 3.2.1.0, where authorization tokens and session cookies lack the Secure attribute, allowing cookie values to be exposed when users click http links or visit malicious sites. The vulnerability is documented across multiple sources (NVD/NVD-derived...
Security Bulletin: IBM Cloud Automation Manager is affected by an issue with insecure cookie path attribute (CVE-2019-4616)
Summary IBM Cloud Automation Manager does not set the secure attribute on authorization tokens or session cookies. Vulnerability Details CVEID: CVE-2019-4616 DESCRIPTION: IBM Cloud Automation Manager does not set the secure attribute on authorization tokens or session cookies. Attackers may be ab...