Vulnerability Details :
IBM Security QRadar Incident Forensics 7.2.x before 7.2.5 Patch 5 does not include the HTTPOnly flag in a Set-Cookie header for the session cookie, which makes it easier for remote attackers to obtain potentially sensitive information via script access to this cookie.
Publish Date : 2015-11-08 Last Update Date : 2015-11-08
- CVSS Scores & Vulnerability Types
- Products Affected By CVE-2015-1994
- References For CVE-2015-1994
- Metasploit Modules Related To CVE-2015-1994
There are not any metasploit modules related to this vulnerability (Please visit www.metasploit.com for more information)