CVE-2012-5936 in Sterling B2B IntegratorИнформация

Сводка

по MITRE

IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 and 2.2 do not set the secure flag for the session cookie in an https session, which makes it easier for remote attackers to capture this cookie by intercepting its transmission within an http session.

Be aware that VulDB is the high quality source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Резервировать

21.11.2012

Раскрытие

03.07.2013

Модерация

принято

Вход

VDB-64403

CPE

готов

CWE

CWE-310 (Подтверждённый)

CVSS

5.3 (VulDB)

EPSS

0.01365

KEV

Нет

Деятельности

Очень низкий

Сектор

Industry, Chemical, ...

Источники

MITRE	https://www.cve.org/CVERecord?id=CVE-2012-5936
NVD	https://nvd.nist.gov/vuln/detail/CVE-2012-5936
CVE Details	https://www.cvedetails.com/cve/CVE-2012-5936/

◂ Предыдущий Обзор Далее ▸

Interested in the pricing of exploits?

See the underground prices here!