Security Directory Integrator

3 CVEs product

Monthly

Sort: Newest CVSS Score EPSS Score Oldest
CVE-2024-28771 MEDIUM Monitor

IBM Security Directory Integrator 7.2.0 and IBM Security Verify Directory Integrator 10.0.0 does not set the secure attribute on authorization tokens or session cookies. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable. No vendor patch available.

IBM Information Disclosure Security Directory Integrator Security Verify Directory Integrator
NVD
CVSS 3.1
4.8
EPSS
0.0%
CVE-2024-28770 MEDIUM Monitor

IBM Security Directory Integrator 7.2.0 and IBM Security Verify Directory Integrator 10.0.0 does not set the secure attribute on authorization tokens or session cookies. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable. No vendor patch available.

IBM Information Disclosure Security Directory Integrator Security Verify Directory Integrator
NVD
CVSS 3.1
4.8
EPSS
0.0%
CVE-2024-28766 LOW Monitor

IBM Security Directory Integrator 7.2.0 and IBM Security Verify Directory Integrator 10.0.0 could disclose sensitive information about directory contents that could aid in further attacks against the. Rated low severity (CVSS 2.4), this vulnerability is low attack complexity. No vendor patch available.

IBM Information Disclosure Security Directory Integrator Security Verify Directory Integrator
NVD
CVSS 3.1
2.4
EPSS
0.1%
CVE-2024-28771
EPSS 0% CVSS 4.8
MEDIUM Monitor

IBM Security Directory Integrator 7.2.0 and IBM Security Verify Directory Integrator 10.0.0 does not set the secure attribute on authorization tokens or session cookies. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable. No vendor patch available.

IBM Information Disclosure Security Directory Integrator +1
NVD
CVE-2024-28770
EPSS 0% CVSS 4.8
MEDIUM Monitor

IBM Security Directory Integrator 7.2.0 and IBM Security Verify Directory Integrator 10.0.0 does not set the secure attribute on authorization tokens or session cookies. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable. No vendor patch available.

IBM Information Disclosure Security Directory Integrator +1
NVD
CVE-2024-28766
EPSS 0% CVSS 2.4
LOW Monitor

IBM Security Directory Integrator 7.2.0 and IBM Security Verify Directory Integrator 10.0.0 could disclose sensitive information about directory contents that could aid in further attacks against the. Rated low severity (CVSS 2.4), this vulnerability is low attack complexity. No vendor patch available.

IBM Information Disclosure Security Directory Integrator +1
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy