Lucene search
GoogleOSV:PYSEC-2022-271HistorySep 13, 2022 - 10:15 a.m.
PYSEC-2022-271
2022-09-1310:15:00
Google
osv.dev
10
cookie security https github repository vulnerability prior to 2.4.2. sensitive
.
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
EPSS
0.001
Percentile
51.2%
Sensitive Cookie in HTTPS Session Without ‘Secure’ Attribute in GitHub repository ikus060/rdiffweb prior to 2.4.2.
Related
osv
osv
rdiffweb 2.4.1 vulnerable to Sensitive Cookie in HTTPS Session Without 'Secure' Attribute
2022-09-14 00:00:51
CVE-2022-3174
2022-09-13 10:15:12
veracode
veracode
Sensitive Information Disclosure
2022-09-13 16:59:31
Information Disclosure
2022-09-21 18:57:20
cvelist
cvelist
github
github
nvd
nvd
CVE-2022-3174
2022-09-13 10:15:12
prion
prion
Session fixation
2022-09-13 10:15:00
huntr
huntr
Session_id without Secure attribute
2022-09-09 06:57:10
cve
cve
CVE-2022-3174
2022-09-13 10:15:12
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
EPSS
0.001
Percentile
51.2%
Related for OSV:PYSEC-2022-271