exploitDog

CVE-2004-0462

Опубликовано: 31 дек. 2004

Источник: nvd

CVSS2: 2.1

EPSS Низкий

Описание

The built-in web servers for multiple networking devices do not set the Secure attribute for sensitive cookies in HTTPS sessions, which could cause the user agent to send those cookies in plaintext over an HTTP session with the same server.

Ссылки

http://www.kb.cert.org/vuls/id/546483
Third Party Advisory
US Government Resource
https://exchange.xforce.ibmcloud.com/vulnerabilities/17702
http://www.kb.cert.org/vuls/id/546483
Third Party Advisory
US Government Resource
https://exchange.xforce.ibmcloud.com/vulnerabilities/17702

EPSS

Процентиль: 45%

0.00227

Низкий

2.1 Low

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-3vrg-5j8v-8v4x

github

больше 3 лет назад

The built-in web servers for multiple networking devices do not set the Secure attribute for sensitive cookies in HTTPS sessions, which could cause the user agent to send those cookies in plaintext over an HTTP session with the same server.

EPSS

Процентиль: 45%

0.00227

Низкий

2.1 Low

CVSS2

Дефекты

NVD-CWE-Other