{"uuid": "fd87a3d1-cbdb-4b8a-891e-3eed86e4b8e5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33860", "type": "seen", "source": "https://t.me/cvedetector/549", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2023-33860 - IBM Security QRadar EDR 3.12 does not set the secu\", \n  \"Content\": \"CVE ID : CVE-2023-33860 \nPublished : July 10, 2024, 4:15 p.m. | 34\u00a0minutes ago \nDescription : IBM Security QRadar EDR 3.12 does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get the cookie values by sending a http:// link to a user or by planting this link in a site the user goes to. The cookie will be sent to the insecure link and the attacker can then obtain the cookie value by snooping the traffic.  IBM X-Force ID:  257702. \nSeverity: 5.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"10 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-10T18:53:04.000000Z"}