漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
IBM Security Directory Integrator information disclosure
Vulnerability Description
IBM Security Directory Integrator 7.2.0 and IBM Security Verify Directory Integrator 10.0.0 could allow a remote attacker to obtain sensitive information, caused by the failure to set the HTTPOnly flag. A remote attacker could exploit this vulnerability to obtain sensitive information from the cookie. IBM X-Force ID: 228587.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
Vulnerability Type
没有’HttpOnly’标志的敏感Cookie
Vulnerability Title
IBM Security Directory Integrator和IBM Security Verify Directory 安全漏洞
Vulnerability Description
IBM Security Verify Directory和IBM Security Directory Integrator都是美国国际商业机器(IBM)公司的产品。IBM Security Verify Directory是一款身份验证和访问管理解决方案的一部分。IBM Security Directory Integrator是一个集成开发环境和运行时服务。 IBM Security Directory Integrator 7.2.0版本和IBM Security Verify Directory
CVSS Information
N/A
Vulnerability Type
N/A