VYPR

PowerHA SystemMirror for i

by IBM

CVEs (2)

  • CVE-2024-55896MedJan 3, 2025
    risk 0.35cvss 5.4epss 0.00

    IBM PowerHA SystemMirror for i 7.4 and 7.5 contains improper restrictions when rendering content via iFrames.  This vulnerability could allow an attacker to gain improper access and perform unauthorized actions on the system.

  • CVE-2024-55897MedJan 3, 2025
    risk 0.28cvss 4.3epss 0.00

    IBM PowerHA SystemMirror for i 7.4 and 7.5 does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get the cookie values by sending a http:// link to a user or by planting this link in a site the user goes to. The cookie will be…