Security Advisory

CVE-2022-43845

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-09-24 10:11:00

Last updated 2024-09-24 13:50:34

Assigner ibm

State PUBLISHED

Description

IBM Aspera Console 3.4.0 through 3.4.4 could allow a remote attacker to obtain sensitive information, caused by the failure to set the HTTPOnly flag. A remote attacker could exploit this vulnerability to obtain sensitive information from the cookie.

← Browse all CVEs View on cve.org ↗