CVE-2025-36249 | IBM Jazz for Service Management up to 1.1.3.25 missing secure attribute

Inserito da Angelo Barbosa | Ott 31, 2025 | CVE

A vulnerability has been found in IBM Jazz for Service Management up to 1.1.3.25 and classified as problematic. The affected element is an unknown function. The manipulation leads to sensitive cookie without secure attribute.

This vulnerability is traded as CVE-2025-36249. It is possible to initiate the attack remotely. There is no exploit available.

The affected component should be upgraded.

CVE-2025-36249 | IBM Jazz for Service Management up to 1.1.3.25 missing secure attribute

Post correlati

CVE-2025-1405 | implecode Product Catalog Simple Plugin up to 1.7.11 on WordPress Shortcode show_products cross site scripting

CVE-2022-48578 | Apple macOS up to 12.4 AppleScript out-of-bounds (HT213345)

CVE-2024-57272 | SecuSTATION Camera up to 2.5.5.3116-S50-SMA-B20160811A cross site scripting

CVE-2024-42029 | xdg-desktop-portal-hyprland up to 1.3.2 App ID os command injection (Issue 242)