Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
IBM Security Directory Integrator information disclosure
Vulnerability Description
IBM Security Directory Integrator 7.2.0 and IBM Security Verify Directory Integrator 10.0.0 could allow a remote attacker to obtain sensitive information, caused by the failure to set the HTTPOnly flag. A remote attacker could exploit this vulnerability to obtain sensitive information from the cookie. IBM X-Force ID: 228587.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
Vulnerability Type
没有’HttpOnly’标志的敏感Cookie
Vulnerability Title
IBM Security Directory Integrator和IBM Security Verify Directory 安全漏洞
Vulnerability Description
IBM Security Verify Directory和IBM Security Directory Integrator都是美国国际商业机器(IBM)公司的产品。IBM Security Verify Directory是一款身份验证和访问管理解决方案的一部分。IBM Security Directory Integrator是一个集成开发环境和运行时服务。 IBM Security Directory Integrator 7.2.0版本和IBM Security Verify Directory
CVSS Information
N/A
Vulnerability Type
N/A