Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
IBM Security Information Queue (ISIQ) 1.0.0, 1.0.1, 1.0.2, 1.0.3, 1.0.4, and 1.0.5 could allow a remote attacker to obtain sensitive information, caused by the failure to set the HTTPOnly flag. A remote attacker could exploit this vulnerability to obtain sensitive information from the cookie. IBM X-Force ID: 176332.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IBM Security Information Queue 信息泄露漏洞
Vulnerability Description
IBM Security Information Queue(ISIQ)是美国IBM公司的一款数据集成产品。该产品利用Kafka技术和发布-订阅模型在IBM安全产品之间集成数据。 IBM ISIQ中存在信息泄露漏洞,该漏洞源于程序没有设置HTTPOnly标识。攻击者可利用该漏洞获取敏感信息。以下产品及版本受到影响:IBM ISIQ 1.0.0版本,1.0.1版本,1.0.2版本,1.0.3版本,1.0.4版本,1.0.5版本。
CVSS Information
N/A
Vulnerability Type
N/A