admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-07-29 05:56:59 +00:00
Code Issues Packages Projects Releases Wiki Activity
cvelist/2020/4xxx/CVE-2020-4315.json
CVE Team 5fa79aeed8
"-Synchronized-Data."
2020-09-21 15:01:47 +00:00

90 lines
2.9 KiB
JSON
Raw Blame History

{
"description": {
"description_data": [
{
"lang": "eng",
"value": "IBM Business Automation Content Analyzer on Cloud 1.0 does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get the cookie values by sending a http:// link to a user or by planting this link in a site the user goes to. The cookie will be sent to the insecure link and the attacker can then obtain the cookie value by snooping the traffic. IBM X-Force ID: 177234."
}
]
},
"data_type": "CVE",
"data_version": "4.0",
"impact": {
"cvssv3": {
"BM": {
"I": "N",
"SCORE": "4.300",
"PR": "N",
"AV": "N",
"A": "N",
"S": "U",
"UI": "R",
"AC": "L",
"C": "L"
},
"TM": {
"E": "U",
"RL": "O",
"RC": "C"
}
}
},
"data_format": "MITRE",
"problemtype": {
"problemtype_data": [
{
"description": [
{
"value": "Obtain Information",
"lang": "eng"
}
]
}
]
},
"CVE_data_meta": {
"ASSIGNER": "psirt@us.ibm.com",
"ID": "CVE-2020-4315",
"STATE": "PUBLIC",
"DATE_PUBLIC": "2020-09-18T00:00:00"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"version": {
"version_data": [
{
"version_value": "1.0"
}
]
},
"product_name": "Business Automation Content Analyzer on Cloud"
}
]
},
"vendor_name": "IBM"
}
]
}
},
"references": {
"reference_data": [
{
"url": "https://www.ibm.com/support/pages/node/6334813",
"title": "IBM Security Bulletin 6334813 (Business Automation Content Analyzer on Cloud)",
"refsource": "CONFIRM",
"name": "https://www.ibm.com/support/pages/node/6334813"
},
{
"title": "X-Force Vulnerability Report",
"name": "ibm-baca-cve20204315-info-disc (177234)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/177234"
}
]
}
}
Reference in New Issue View Git Blame Copy Permalink