2 matches found
Micro Focus GroupWise Session ID Disclosure
Trovent Security Advisory 2203-01 Micro Focus GroupWise transmits session ID in URL Overview Advisory ID: TRSA-2203-01 Advisory version: 1.0 Advisory status: Public Advisory URL: https://trovent.io/security-advisory-2203-01 Affected product: Micro Focus GroupWise Affected version: prior to 18.4.2...
CVE-2022-38756
Micro Focus GroupWise Web (versions prior to 18.4.2) is affected by CVE-2022-38756. The GW Web component makes a request to the Post Office Agent containing sensitive information in query parameters, which can be logged by intervening HTTP proxies. Connected sources corroborate exposure of sessio...