IBM » Websphere Extreme Scale : Security Vulnerabilities, CVEs, Published In 2015 (Information Leak)
IBM WebSphere eXtreme Scale 7.1.0 before 7.1.0.3 and 7.1.1 before 7.1.1.1 does not set the secure flag for the session cookie in an https session, which makes it easier for remote attackers to capture this cookie by intercepting its transmission within an http session.
Max CVSS
4.3
EPSS Score
0.29%
Published
2015-10-04
Updated
2015-10-05
1 vulnerabilities found