Missing Secure Attribute in Encrypted Session Cookie Vulnerability in IBM Tivoli Federated Identity Manager 6.2

Missing Secure Attribute in Encrypted Session Cookie Vulnerability in IBM Tivoli Federated Identity Manager 6.2

CVE-2017-1319 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

IBM Tivoli Federated Identity Manager 6.2 is affected by a vulnerability due to a missing secure attribute in encrypted session (SSL) cookie. IBM X-Force ID: 125731.

Learn more about our Web Application Penetration Testing UK.