Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ibmIBMCD88F4F019A6C21D01AC7CF0C7C6BC0E60F3DB9228A947D8ADFF14AD7C6BD760
HistoryJun 16, 2018 - 9:31 p.m.

Security Bulletin: IBM QRadar Incident Forensics is vulnerable to session highjacking. (CVE-2015-1994)

2018-06-1621:31:12
www.ibm.com
8

EPSS

0.002

Percentile

54.8%

JSON

Summary

IBM QRadar incident forensics authorization cookie is missing the httponly attribute.

Vulnerability Details

CVE-ID:CVE-2015-1994

**Description:**IBM Qradar Incident Forensics could allow a remote attacker to obtain sensitive information, caused by the failure to set the httponly attribute for the session cookie. An attacker could exploit this vulnerability to capture the cookie and obtain sensitive information.

**CVSS Base Score:**4.3 **CVSS Temporal Score:**See https://exchange.xforce.ibmcloud.com/vulnerabilities/103880 for the current score **CVSS Environmental Score:***Undefined **CVSS Vector:**AV:N/AC:M/Au:N/C:P/I:N/A:N

Affected Products and Versions

ยท IBM QRadar Incident Forensics 7.2.n

Remediation/Fixes

ยท IBM QRadar/QRM/QVM/QRIF 7.2.5 Patch 5

Workarounds and Mitigations

None

Related

ibm 1
cvelist 1
cve 1
prion 1
nvd 1
ibm
ibm
Security Bulletin: IBM QRadar SIEM is vulnerable to a client side scripting attack due to a missing HTTPOnly flag on a cookie. (CVE-2015-1994)
2018-06-16 21:39:24
cvelist
cvelist
CVE-2015-1994
2015-11-08 22:00:00
cve
cve
CVE-2015-1994
2015-11-08 22:59:03
prion
prion
Design/Logic Flaw
2015-11-08 22:59:00
nvd
nvd
CVE-2015-1994
2015-11-08 22:59:03

EPSS

0.002

Percentile

54.8%

JSON
Related for CD88F4F019A6C21D01AC7CF0C7C6BC0E60F3DB9228A947D8ADFF14AD7C6BD760
ibm1cvelist1cve1prion1nvd1