{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2013-10-28T00:00:00", "descriptions": [{"lang": "en", "value": "noVNC before 0.5 does not set the secure flag for a cookie in an https session, which makes it easier for remote attackers to capture this cookie by intercepting its transmission within an http session."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2015-04-30T14:57:00", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "[oss-security] 20150217 CVE request: novnc: session hijack through insecurely set session token cookies", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://www.openwall.com/lists/oss-security/2015/02/17/1"}, {"name": "RHSA-2015:0833", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://rhn.redhat.com/errata/RHSA-2015-0833.html"}, {"name": "RHSA-2015:0884", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://rhn.redhat.com/errata/RHSA-2015-0884.html"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1193451"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://github.com/kanaka/noVNC/commit/ad941faddead705cd611921730054767a0b32dcd"}, {"name": "RHSA-2015:0788", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://rhn.redhat.com/errata/RHSA-2015-0788.html"}, {"name": "[oss-security] 20150312 CVE request: novnc: session hijack through insecurely set session token cookies", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://www.openwall.com/lists/oss-security/2015/03/12/13"}, {"name": "RHSA-2015:0834", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://rhn.redhat.com/errata/RHSA-2015-0834.html"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2013-7436", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "noVNC before 0.5 does not set the secure flag for a cookie in an https session, which makes it easier for remote attackers to capture this cookie by intercepting its transmission within an http session."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "[oss-security] 20150217 CVE request: novnc: session hijack through insecurely set session token cookies", "refsource": "MLIST", "url": "http://www.openwall.com/lists/oss-security/2015/02/17/1"}, {"name": "RHSA-2015:0833", "refsource": "REDHAT", "url": "http://rhn.redhat.com/errata/RHSA-2015-0833.html"}, {"name": "RHSA-2015:0884", "refsource": "REDHAT", "url": "http://rhn.redhat.com/errata/RHSA-2015-0884.html"}, {"name": "https://bugzilla.redhat.com/show_bug.cgi?id=1193451", "refsource": "CONFIRM", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1193451"}, {"name": "https://github.com/kanaka/noVNC/commit/ad941faddead705cd611921730054767a0b32dcd", "refsource": "CONFIRM", "url": "https://github.com/kanaka/noVNC/commit/ad941faddead705cd611921730054767a0b32dcd"}, {"name": "RHSA-2015:0788", "refsource": "REDHAT", "url": "http://rhn.redhat.com/errata/RHSA-2015-0788.html"}, {"name": "[oss-security] 20150312 CVE request: novnc: session hijack through insecurely set session token cookies", "refsource": "MLIST", "url": "http://www.openwall.com/lists/oss-security/2015/03/12/13"}, {"name": "RHSA-2015:0834", "refsource": "REDHAT", "url": "http://rhn.redhat.com/errata/RHSA-2015-0834.html"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T18:09:16.427Z"}, "title": "CVE Program Container", "references": [{"name": "[oss-security] 20150217 CVE request: novnc: session hijack through insecurely set session token cookies", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://www.openwall.com/lists/oss-security/2015/02/17/1"}, {"name": "RHSA-2015:0833", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "http://rhn.redhat.com/errata/RHSA-2015-0833.html"}, {"name": "RHSA-2015:0884", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "http://rhn.redhat.com/errata/RHSA-2015-0884.html"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1193451"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://github.com/kanaka/noVNC/commit/ad941faddead705cd611921730054767a0b32dcd"}, {"name": "RHSA-2015:0788", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "http://rhn.redhat.com/errata/RHSA-2015-0788.html"}, {"name": "[oss-security] 20150312 CVE request: novnc: session hijack through insecurely set session token cookies", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://www.openwall.com/lists/oss-security/2015/03/12/13"}, {"name": "RHSA-2015:0834", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "http://rhn.redhat.com/errata/RHSA-2015-0834.html"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2013-7436", "datePublished": "2015-04-10T14:00:00", "dateReserved": "2015-03-12T00:00:00", "dateUpdated": "2024-08-06T18:09:16.427Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:kanaka:novnc:0.4:*:*:*:*:*:*:*", "matchCriteriaId": "4EB3D257-0F54-49E2-B2C9-5B4BE68DA0B2", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "noVNC before 0.5 does not set the secure flag for a cookie in an https session, which makes it easier for remote attackers to capture this cookie by intercepting its transmission within an http session."}, {"lang": "es", "value": "noVNC anterior a 0.5 no configura la bandera de seguro para una cookie en una sesi\u00f3n https, lo que facilita a atacantes remotos capturar esta cookie mediante la intercepci\u00f3n de su transmisi\u00f3n dentro de una sesi\u00f3n http."}], "id": "CVE-2013-7436", "lastModified": "2025-04-12T10:46:40.837", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2015-04-10T14:59:00.063", "references": [{"source": "cve@mitre.org", "url": "http://rhn.redhat.com/errata/RHSA-2015-0788.html"}, {"source": "cve@mitre.org", "url": "http://rhn.redhat.com/errata/RHSA-2015-0833.html"}, {"source": "cve@mitre.org", "url": "http://rhn.redhat.com/errata/RHSA-2015-0834.html"}, {"source": "cve@mitre.org", "url": "http://rhn.redhat.com/errata/RHSA-2015-0884.html"}, {"source": "cve@mitre.org", "url": "http://www.openwall.com/lists/oss-security/2015/02/17/1"}, {"source": "cve@mitre.org", "url": "http://www.openwall.com/lists/oss-security/2015/03/12/13"}, {"source": "cve@mitre.org", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1193451"}, {"source": "cve@mitre.org", "url": "https://github.com/kanaka/noVNC/commit/ad941faddead705cd611921730054767a0b32dcd"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://rhn.redhat.com/errata/RHSA-2015-0788.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://rhn.redhat.com/errata/RHSA-2015-0833.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://rhn.redhat.com/errata/RHSA-2015-0834.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://rhn.redhat.com/errata/RHSA-2015-0884.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.openwall.com/lists/oss-security/2015/02/17/1"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.openwall.com/lists/oss-security/2015/03/12/13"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1193451"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://github.com/kanaka/noVNC/commit/ad941faddead705cd611921730054767a0b32dcd"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-310"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{"affected_release": [{"advisory": "RHSA-2015:0884", "cpe": "cpe:/a:redhat:openstack:4::el6", "package": "novnc-0:0.5.1-2.el6ost", "product_name": "OpenStack 4 for RHEL 6", "release_date": "2015-04-23T00:00:00Z"}, {"advisory": "RHSA-2015:0833", "cpe": "cpe:/a:redhat:openstack:5::el6", "package": "novnc-0:0.5.1-2.el6ost", "product_name": "Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 6", "release_date": "2015-04-16T00:00:00Z"}, {"advisory": "RHSA-2015:0834", "cpe": "cpe:/a:redhat:openstack:5::el7", "package": "novnc-0:0.5.1-2.el7ost", "product_name": "Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7", "release_date": "2015-04-16T00:00:00Z"}, {"advisory": "RHSA-2015:0788", "cpe": "cpe:/a:redhat:openstack:6::el7", "package": "novnc-0:0.5.1-2.el7ost", "product_name": "Red Hat Enterprise Linux OpenStack Platform 6.0 (Juno) for RHEL 7", "release_date": "2015-04-07T00:00:00Z"}], "bugzilla": {"description": "novnc: session hijack through insecurely set session token cookies", "id": "1193451", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1193451"}, "csaw": false, "cvss": {"cvss_base_score": "6.8", "cvss_scoring_vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "status": "verified"}, "cwe": "CWE-319", "details": ["noVNC before 0.5 does not set the secure flag for a cookie in an https session, which makes it easier for remote attackers to capture this cookie by intercepting its transmission within an http session.", "It was discovered that noVNC did not properly set the 'secure' flag when issuing cookies. An attacker could use this flaw to intercept cookies via a man-in-the-middle attack."], "name": "CVE-2013-7436", "package_state": [{"cpe": "cpe:/a:redhat:enterprise_linux:7::hypervisor", "fix_state": "Not affected", "package_name": "novnc", "product_name": "Red Hat Enterprise Virtualization 3"}], "public_date": "2013-10-28T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2013-7436\nhttps://nvd.nist.gov/vuln/detail/CVE-2013-7436"], "threat_severity": "Moderate"}