CVE-2019-4330

Summary

IBM Security Guardium Big Data Intelligence (SonarG) 4.0 does not set the secure attribute for cookies in HTTPS sessions, which could cause the user agent to send those cookies in plaintext over an HTTP session. IBM X-Force ID: 161210.

Affected Software

VendorProductVersion RangeStatus
IBMSecurity Guardium Big Data Intelligence4affected

Weaknesses

  • Obtain Information

ADP Enrichment

CVE Program Container

Additional References

References