Medium Severity

Security Bulletin: IBM Cloud Automation Manager is affected by an issue with insecure cookie path attribute (CVE-2019-4616)

Share this post:

IBM Cloud Automation Manager does not set the secure attribute on authorization tokens or session cookies.

Affected product(s) and affected version(s):

Affected Product(s) Version(s)
IBM Cloud Automation Manager 3.2.1.0

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/1289188

More stories

Security Bulletin: Vulnerabilities in Apache Tomcat affects IBM Platform Symphony

Apr 6, 2020 8:00 pm EDT | Medium Severity

This interim fix provides instructions on upgrading Apache Tomcat to v8.5.53 in IBM Platform Symphony 7.1 Fix Pack 1 in order to address security vulnerabilities CVE-2020-1938, CVE-2020-1935 and CVE-2019-17569 in Apache Tomcat. ...read more


Security Bulletin: Security vulnerabilities in Dojo and jQuery might affect IBM Business Automation Workflow and IBM Business Process Manager (BPM)

Apr 6, 2020 8:00 pm EDT | Medium Severity

Security vulnerabilities have been reported for Dojo and jQuery version shipped with IBM Business Automation Workflow and IBM BPM. ...read more


Security Bulletin: IBM Security Guardium is affected by a kernel vulnerability

Apr 3, 2020 8:00 pm EDT | Medium Severity

IBM Security Guardium has fixed this vulnerability ...read more