Lucene search
RedhatCVELIST:CVE-2015-3155HistoryAug 14, 2015 - 6:00 p.m.
CVE-2015-3155
2015-08-1418:00:00
redhat
www.cve.org
Foreman before 1.8.1 does not set the secure flag for the _session_id cookie in an https session, which makes it easier for remote attackers to capture this cookie by intercepting its transmission within an http session.
Related
prion
prion
Session fixation
2015-08-14 18:59:00
cve
cve
CVE-2015-3155
2015-08-14 18:59:06
nvd
nvd
CVE-2015-3155
2015-08-14 18:59:06
redhat
redhat
(RHSA-2015:1592) Important: Red Hat Satellite 6.1.1 on RHEL 6
2015-08-12 04:47:35
(RHSA-2015:1591) Important: Red Hat Satellite 6.1.1 on RHEL 7
2015-08-12 04:38:51
veracode
veracode
Incorrect Session Invalidation
2019-05-02 05:42:22
Man-In-The-Middle (MitM)
2019-05-02 05:42:16
Cross-Site Scripting (XSS)
2019-05-02 05:42:13
nessus
nessus
RHEL 7 : Satellite Server (RHSA-2015:1591)
2015-09-01 00:00:00
RHEL 6 : Satellite Server (RHSA-2015:1592)
2015-09-01 00:00:00