admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-08-04 08:44:25 +00:00
Code Issues Packages Projects Releases Wiki Activity
cvelist/2019/4xxx/CVE-2019-4330.json
CVE Team 6d81adf673
"-Synchronized-Data."
2019-10-29 19:01:09 +00:00

90 lines
2.7 KiB
JSON
Raw Blame History

{
"affects": {
"vendor": {
"vendor_data": [
{
"vendor_name": "IBM",
"product": {
"product_data": [
{
"version": {
"version_data": [
{
"version_value": "4"
}
]
},
"product_name": "Security Guardium Big Data Intelligence"
}
]
}
}
]
}
},
"data_format": "MITRE",
"data_version": "4.0",
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Obtain Information"
}
]
}
]
},
"CVE_data_meta": {
"ASSIGNER": "psirt@us.ibm.com",
"DATE_PUBLIC": "2019-10-22T00:00:00",
"ID": "CVE-2019-4330",
"STATE": "PUBLIC"
},
"data_type": "CVE",
"description": {
"description_data": [
{
"lang": "eng",
"value": "IBM Security Guardium Big Data Intelligence (SonarG) 4.0 does not set the secure attribute for cookies in HTTPS sessions, which could cause the user agent to send those cookies in plaintext over an HTTP session. IBM X-Force ID: 161210."
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.ibm.com/support/pages/node/1096384",
"title": "IBM Security Bulletin 1096384 (Security Guardium Big Data Intelligence)",
"refsource": "CONFIRM",
"url": "https://www.ibm.com/support/pages/node/1096384"
},
{
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/161210",
"title": "X-Force Vulnerability Report",
"refsource": "XF",
"name": "ibm-guardium-cve20194330-info-disc (161210)"
}
]
},
"impact": {
"cvssv3": {
"TM": {
"RL": "O",
"RC": "C",
"E": "U"
},
"BM": {
"SCORE": "3.100",
"PR": "N",
"I": "N",
"AC": "H",
"S": "U",
"A": "N",
"AV": "N",
"C": "L",
"UI": "R"
}
}
}
}
Reference in New Issue View Git Blame Copy Permalink