CyberSec.Space Logo
Back to CVE Browser

CVE-2017-1319

HIGH
7.5
CVSS Severity Score
EPSS Score0.1170%
EPSS Percentile16.45th
PublishedJun 8, 2017
Last ModifiedMay 13, 2026

Vulnerability Description

IBM Tivoli Federated Identity Manager 6.2 is affected by a vulnerability due to a missing secure attribute in encrypted session (SSL) cookie. IBM X-Force ID: 125731.

Affected Platforms (CPE)

πŸ“¦
Ibm

Tivoli Federated Identity Manager

= 6.2.0
πŸ“¦
Ibm

Tivoli Federated Identity Manager

= 6.2.1
πŸ“¦
Ibm

Tivoli Federated Identity Manager

= 6.2.2

References & Advisories

πŸ”— http://www-01.ibm.com/support/docview.wss?uid=swg22002871
πŸ”— http://www.securitytracker.com/id/1038504
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/125731
πŸ”— http://www-01.ibm.com/support/docview.wss?uid=swg22002871
πŸ”— http://www.securitytracker.com/id/1038504
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/125731

Related Vulnerabilities

CVE-2011-313710.0

Unspecified vulnerability in the Management Console in IBM Tivoli Federated Identity Manager (TFIM) 6.2.0 before 6.2.0.9 and Tivol...

CVE-2011-313610.0

Unspecified vulnerability in the Management Console in IBM Tivoli Federated Identity Manager (TFIM) 6.2.0 before 6.2.0.9 and Tivol...

CVE-2011-313510.0

Unspecified vulnerability in the Runtime in IBM Tivoli Federated Identity Manager (TFIM) 6.2.0 before 6.2.0.9 and Tivoli Federated...

CVE-2009-50836.8

IBM Tivoli Federated Identity Manager (TFIM) 6.2.0 before 6.2.0.2, when configured as an OpenID relying party, does not perform th...