4 matches found
CVE-2021-37189
An issue was discovered on Digi TransPort Gateway devices through 5.2.13.4. They do not set the Secure attribute for sensitive cookies in HTTPS sessions, which could cause the user agent to send those cookies in cleartext over an HTTP session...
CVE-2021-37189
creationtimestamp| type| source ---|---|--- 2021-12-10 16:25:03+00:00| seen| https://t.me/cibsecurity/33735...
CVE-2021-37189
An issue was discovered on Digi TransPort Gateway devices through 5.2.13.4. They do not set the Secure attribute for sensitive cookies in HTTPS sessions, which could cause the user agent to send those cookies in cleartext over an HTTP session...
CVE-2021-37189
CVE-2021-37189 affects Digi TransPort Gateway devices up to version 5.2.13.4. The issue is that these devices do not set the Secure attribute for sensitive cookies in HTTPS sessions, which could cause cookies to be sent in cleartext over an HTTP session. This behavior is described in the NVD entr...