CVE-2022-22330
published 2022-09-13CVE-2022-22330: IBM Control Desk 7.6.1 could allow a remote attacker to obtain sensitive information, caused by the failure to set the HTTPOnly flag. A remote attacker could…
medium5.3CVSS 3.1
AVNACLPRNUINSUCLINAN
IBM Control Desk 7.6.1 could allow a remote attacker to obtain sensitive information, caused by the failure to set the HTTPOnly flag. A remote attacker could exploit this vulnerability to obtain sensitive information from the cookie. IBM X-Force ID: 219126.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ibm | control_desk | — | — |
| ibm | control_desk | — | — |
| ibm | control_desk | — | — |
| ibm | control_desk | — | — |
| ibm | control_desk | — | — |
| ibm | control_desk | — | — |