noVNC does not set secure flag for cookie in https session, making it vulnerable to interception
Reporter | Title | Published | Views | Family All 18 |
---|---|---|---|---|
RedHat Linux | (RHSA-2015:0788) Moderate: novnc security update | 7 Apr 201500:00 | – | redhat |
RedHat Linux | (RHSA-2015:0884) Moderate: novnc security update | 23 Apr 201500:00 | – | redhat |
RedHat Linux | (RHSA-2015:0834) Moderate: novnc security update | 16 Apr 201500:00 | – | redhat |
RedHat Linux | (RHSA-2015:0833) Moderate: novnc security update | 16 Apr 201513:12 | – | redhat |
UbuntuCve | CVE-2013-7436 | 10 Apr 201500:00 | – | ubuntucve |
Veracode | Insecure Cookies | 15 Jan 201909:05 | – | veracode |
Veracode | Insecure Cookies | 18 Jul 201808:48 | – | veracode |
CVE | CVE-2013-7436 | 10 Apr 201514:59 | – | cve |
OSV | Red Hat Security Advisory: novnc security update | 15 Sep 202422:28 | – | osv |
OSV | Red Hat Security Advisory: novnc security update | 15 Sep 202422:28 | – | osv |
OS | OS Version | Architecture | Package | Package Version | Filename |
---|---|---|---|---|---|
Debian | 12 | all | novnc | 1:0.4+dfsg+1+20131010+gitf68af8af3d-4 | novnc_1:0.4+dfsg+1+20131010+gitf68af8af3d-4_all.deb |
Debian | 11 | all | novnc | 1:0.4+dfsg+1+20131010+gitf68af8af3d-4 | novnc_1:0.4+dfsg+1+20131010+gitf68af8af3d-4_all.deb |
Debian | 999 | all | novnc | 1:0.4+dfsg+1+20131010+gitf68af8af3d-4 | novnc_1:0.4+dfsg+1+20131010+gitf68af8af3d-4_all.deb |
Debian | 13 | all | novnc | 1:0.4+dfsg+1+20131010+gitf68af8af3d-4 | novnc_1:0.4+dfsg+1+20131010+gitf68af8af3d-4_all.deb |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo