Lucene search
MitreCVELIST:CVE-2022-38846HistorySep 16, 2022 - 1:15 p.m.
CVE-2022-38846
2022-09-1613:15:24
mitre
www.cve.org
0.001 Low
EPSS
Percentile
51.1%
EspoCRM version 7.1.8 is vulnerable to Missing Secure Flag allowing the browser to send plain text cookies over an insecure channel (HTTP). An attacker may capture the cookie from the insecure channel using MITM attack.
Related
nvd
nvd
CVE-2022-38846
2022-09-16 14:15:09
osv
osv
CVE-2022-38846
2022-09-16 14:15:09
BIT-espocrm-2022-38846
2024-03-06 10:52:14
prion
prion
Design/Logic Flaw
2022-09-16 14:15:00
cve
cve
CVE-2022-38846
2022-09-16 14:15:09