This vulnerability exists in SyroTech SY-GPON-1110-WDONT Router due to missing secure flag for the session cookies associated with the router's web management interface. An attacker with remote access could exploit this by intercepting transmission within an HTTP session on the vulnerable system. Successful exploitation of this vulnerability could allow the attacker to capture cookies and compromise the targeted system.
History

Fri, 22 Nov 2024 12:00:00 +0000


cve-icon MITRE

Status: PUBLISHED

Assigner: CERT-In

Published: 2024-07-26T11:34:53.978Z

Updated: 2024-08-02T04:46:52.723Z

Reserved: 2024-07-19T11:24:20.419Z

Link: CVE-2024-41684

cve-icon Vulnrichment

Updated: 2024-07-29T19:01:13.668Z

cve-icon NVD

Status : Modified

Published: 2024-07-26T12:15:02.763

Modified: 2024-11-21T09:32:57.967

Link: CVE-2024-41684

cve-icon Redhat

No data.