Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
IBM Jazz Team Server, as used in Rational Collaborative Lifecycle Management; Rational Quality Manager 3.x before 3.0.1.6 iFix 3, 4.x before 4.0.7, and 5.x before 5.0.1; and other Rational products, does not set the secure flag for the session cookie in an https session, which makes it easier for remote attackers to capture this cookie by intercepting its transmission within an http session.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IBM Jazz Team Server 信息泄露漏洞
Vulnerability Description
IBM Jazz Team Server是美国IBM公司的一套用于IBM Rational Jazz(团队协作平台)中的项目管理工具。 多款Rational产品中使用的IBM Jazz Team Server中存在安全漏洞,该漏洞源于在https会话中,程序没有为会话cookie设置安全标志。远程攻击者可利用该漏洞捕获cookie。以下产品和版本受到影响:Rational Collaborative Lifecycle Management,Rational Quality Manager 3.0.1.6
CVSS Information
N/A
Vulnerability Type
N/A