CVE-2023-33860

Name of the Vulnerable Software and Affected Versions IBM Security QRadar EDR version 3.12

Description The issue concerns the failure to set the secure attribute on authorization tokens or session cookies. This allows attackers to obtain cookie values by sending a user a link to an insecure site or by planting such a link on a site the user visits. The cookie will be sent to the insecure link, enabling the attacker to obtain the cookie value by snooping the traffic.

Recommendations For IBM Security QRadar EDR version 3.12, consider setting the secure attribute on authorization tokens or session cookies to prevent them from being sent over insecure connections. As a temporary workaround, restrict access to sensitive areas of the application that use these cookies until a proper fix is applied.