Security Bulletin: "Incorrect/Missing Security Headers" affects IBM CICS TX Advanced 10.1.

Summary "Cookie with Insecure, Improper or Missing SameSite attribute" vulnerability affects IBM CICS TX Advanced 10.1. IBM CICS TX Advanced has addressed the applicable vulnerability. Vulnerability Details CVEID:CVE-2023-38363 DESCRIPTION: IBM CICS TX Advanced does not set the secure attribute o...

IBM Security Guardium Information Disclosure Vulnerability (CNVD-2023-97700)

IBM Security Guardium is a suite of platforms from International Business Machines IBM that provide data protection capabilities. The platform includes features such as custom UI, report management and streamlined audit process building. IBM Security Guardium suffers from an information disclosur...

Security Bulletin: IBM Security Guardium has a missing or insecure SameSite attribute for a sensitive cookie (CVE-2022-43906)

Summary IBM Security Guardium has addressed this vulnerability with an update. Vulnerability Details CVEID:CVE-2022-43906 DESCRIPTION: IBM Security Guardium could disclose sensitive information due to a missing or insecure SameSite attribute for a sensitive cookie. CVSS Base score: 3.1 CVSS...

CVE-2022-35284

IBM Security Verify Information Queue (ISIQ) 10.0.2 is vulnerable to information disclosure due to a missing/insecure SameSite attribute on a sensitive cookie. The issue affects ISIQ 10.0.2 and is addressed by upgrading to ISIQ 10.0.3 or newer. The lack of SameSite disables CSRF protections for t...