Security Advisory

CVE-2013-7436

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2015-04-10 14:00:00

Last updated 2024-08-06 18:09:16

Assigner mitre

State PUBLISHED

Description

noVNC before 0.5 does not set the secure flag for a cookie in an https session, which makes it easier for remote attackers to capture this cookie by intercepting its transmission within an http session.

← Browse all CVEs View on cve.org ↗