CVE-2022-3251 | Severity.io

Description

Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in GitHub repository ikus060/minarca prior to 4.2.2.

Related CPE's

Vulnerable

References

PatchThird Party Advisory

ExploitPatchThird Party Advisory

PatchThird Party Advisory

ExploitPatchThird Party Advisory

Weaknesses

Secondary

CWE-614

Primary

CWE-311

CVSS impact metrics

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

5.3 · Medium

Information

Source identifier

Vulnerability status

Modified

Published

2022-09-21T15:15:09.630Z

3 years ago

Last modified

2024-11-21T06:19:08.807Z

1 year ago