CVE-2020-4173
CVE-2020-4173 affects IBM Guardium Activity Insights 10.6 and 11.0. The issue is that authorization tokens and session cookies are missing the secure attribute, allowing cookie values to be captured if a user visits an http link or a site containing one. Impact is exposure of cookies via network ...