Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
IBM Security Information Queue (ISIQ) 1.0.0, 1.0.1, and 1.0.2 is missing the HTTP Strict Transport Security header. Users can navigate by mistake to the unencrypted version of the web application or accept invalid certificates. This leads to sensitive data being sent unencrypted over the wire. IBM X-Force ID: 158661.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IBM Security Information Queue 输入验证错误漏洞
Vulnerability Description
IBM Security Information Queue是美国IBM公司的一款数据集成产品。该产品利用Kafka技术和发布-订阅模型在IBM安全产品之间集成数据。 IBM Security Information Queue 1.0.0版本、1.0.1版本和1.0.2版本中存在安全漏洞,该漏洞源于程序丢失了HTTP Strict Transport Security报头。攻击者可利用该漏洞获取敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A