Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 12:56 a.m.7 views

CVE-2022-34313

IBM CICS TX 11.1 does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get the cookie values by sending a http:// link to a user or by planting this link in a site the user goes to. The cookie will be sent to the insecure link and the attacker can...

4.3CVSS6AI score0.006EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2023/02/14 9:14 p.m.39 views

Security Bulletin: IBM CICS TX Standard is vulnerable to allowing attackers access to an application via insecure session cookies (CVE-2022-34313).

Summary IBM CICS TX Standard could allow attackers to access an application via insecure session cookies. The fix removes this vulnerability CVE-2022-34313 from IBM CICS TX Standard. Vulnerability Details CVEID:CVE-2022-34313 DESCRIPTION: IBM CICS TX does not set the secure attribute on...

4.3CVSS3.5AI score0.006EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2023/02/14 9:4 p.m.36 views

Security Bulletin: IBM CICS TX Advanced is vulnerable to allowing an attacker to access an application via insecure session cookies (CVE-2022-34313).

Summary IBM CICS TX Advanced could allow an attacker access to an application via insecure session cookies. The fix removes this vulnerability CVE-2022-34313 from IBM CICS TX Advanced. Vulnerability Details CVEID:CVE-2022-34313 DESCRIPTION: IBM CICS TX does not set the secure attribute on...

4.3CVSS3.5AI score0.006EPSS
Exploits0Affected Software1
CVE
CVE
added 2022/11/14 5:5 p.m.68 views

CVE-2022-34313

CVE-2022-34313 affects IBM CICS TX 11.1, where authorization tokens and session cookies are created without the secure attribute, enabling exposure of cookie values when users click on or load http:// links. The issue is documented across IBM advisories (Standard and Advanced) and external refere...

4.3CVSS3.6AI score0.006EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2022/11/14 5:5 p.m.5 views

CVE-2022-34313 IBM CICS TX Standard is vulnerable to allowing attackers access to an application via insecure session cookies

IBM CICS TX 11.1 does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get the cookie values by sending a http:// link to a user or by planting this link in a site the user goes to. The cookie will be sent to the insecure link and the attacker can...

4.3CVSS6.2AI score0.006EPSS
Exploits0References3
Rows per page
Query Builder