Files or Directories Accessible to External Parties
IBM Cloud Orchestrator and IBM Cloud Orchestrator Enterprise 2.5 through 126.96.36.199 and 2.4 through 188.8.131.52 could allow a local user to obtain sensitive information from SessionManagement cookies. IBM X-Force ID: 162259.
CWE-552 - Files or Directories Accessible to External Parties
The product makes files or directories accessible to unauthorized actors, even though they should not be.