RELY-PCIe v22.2.1 to v23.1.0 does not set the Secure attribute for sensitive cookies in HTTPS sessions, which could cause the user agent to send those cookies in cleartext over an HTTP session.
Metrics
Affected Vendors & Products
References
History
Mon, 25 Nov 2024 18:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Weaknesses | CWE-732 | |
Metrics |
cvssV3_1
|
Wed, 11 Sep 2024 20:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Wed, 11 Sep 2024 17:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | RELY-PCIe v22.2.1 to v23.1.0 does not set the Secure attribute for sensitive cookies in HTTPS sessions, which could cause the user agent to send those cookies in cleartext over an HTTP session. | |
References |
|
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2024-09-11T00:00:00
Updated: 2024-11-25T17:40:34.550Z
Reserved: 2024-08-21T00:00:00
Link: CVE-2024-44575
Vulnrichment
Updated: 2024-09-11T19:18:22.482Z
NVD
Status : Awaiting Analysis
Published: 2024-09-11T17:15:13.820
Modified: 2024-11-25T18:15:12.667
Link: CVE-2024-44575
Redhat
No data.