Security Advisory

CVE-2025-12031

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-10-21 17:22:36

Last updated 2025-10-21 18:17:10

Assigner azure-access

State PUBLISHED

Description

HTTP Security Misconfiguration - Lacking Secure and HTTPOnly Attribute may allow reading the sensitive cookies from the javascript contextThis issue affects BLU-IC2: through 1.19.5; BLU-IC4: through 1.19.5.

← Browse all CVEs View on cve.org ↗