Lucene search
PRIOn knowledge basePRION:CVE-2020-27650HistoryOct 29, 2020 - 9:15 a.m.
Session fixation
2020-10-2909:15:00
PRIOn knowledge base
www.prio-n.com
4
Synology DiskStation Manager (DSM) before 6.2.3-25426-2 does not set the Secure flag for the session cookie in an HTTPS session, which makes it easier for remote attackers to capture this cookie by intercepting its transmission within an HTTP session.
| CPE | Name | Operator | Version |
|---|---|---|---|
| diskstation_manager | ge | 6.2 | |
| diskstation_manager | lt | 6.2.3 | |
| skynas_firmware | eq | < 6.2.3-25426 |
Related
nvd
nvd
CVE-2020-27650
2020-10-29 09:15:12
cvelist
cvelist
CVE-2020-27650
2020-10-29 00:00:00
cve
cve
CVE-2020-27650
2020-10-29 09:15:12
openvas
openvas
talosblog
talosblog