Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
IBM Planning Analytics 2.0 could allow a remote attacker to obtain sensitive information, caused by the failure to set the Secure flag for the session cookie in TLS mode. By intercepting its transmission within an HTTP session, an attacker could exploit this vulnerability to capture the cookie and obtain sensitive information. IBM X-Force ID: 182631.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IBM Planning Analytics 授权问题漏洞
Vulnerability Description
IBM Planning Analytics是美国IBM公司的一套业务规划分析解决方案。该方案支持自动化执行业务规划、预算和分析等流程。 IBM Planning Analytics 2.0版本中存在安全漏洞,该漏洞源于程序没有在TLS模式下为会话cookie设置secure标志。远程攻击者可通过在HTTP会话中拦截其传输利用该漏洞捕获cookie并获取敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A