Tuesday, February 4, 2020

Security Bulletin: IBM Cloud Automation Manager is affected by an issue with insecure cookie path attribute (CVE-2019-4616)

IBM Cloud Automation Manager does not set the secure attribute on authorization tokens or session cookies.

Affected product(s) and affected version(s):

Affected Product(s) Version(s)
IBM Cloud Automation Manager 3.2.1.0

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/1289188

The post Security Bulletin: IBM Cloud Automation Manager is affected by an issue with insecure cookie path attribute (CVE-2019-4616) appeared first on IBM PSIRT Blog.



from IBM Product Security Incident Response Team https://ift.tt/2tyiRLu
Posted by at

No comments:

Post a Comment

Note: Only a member of this blog may post a comment.

Subscribe to: Post Comments (Atom)