Описание
HCL Sametime is impacted by misconfigured security related HTTP headers. It was identified that some HTTP headers were missing on web service responses. This will lead to less secure browser default treatment for the policies controlled by these headers.
Ссылки
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 12.0.2 (исключая)
Одно из
cpe:2.3:a:hcltech:sametime:*:*:*:*:*:*:*:*
cpe:2.3:a:hcltech:sametime:12.0.2:-:*:*:*:*:*:*
EPSS
Процентиль: 37%
0.0016
Низкий
5.8 Medium
CVSS3
5.3 Medium
CVSS3
Дефекты
NVD-CWE-noinfo
CWE-922
Связанные уязвимости
CVSS3: 5.8
github
больше 1 года назад
HCL Sametime is impacted by misconfigured security related HTTP headers. It was identified that some HTTP headers were missing on web service responses. This will lead to less secure browser default treatment for the policies controlled by these headers.
EPSS
Процентиль: 37%
0.0016
Низкий
5.8 Medium
CVSS3
5.3 Medium
CVSS3
Дефекты
NVD-CWE-noinfo
CWE-922