NotCVE - vendor:"Softwareag" product:"Connx" version:"6.2.0.1269"

2 results (0.007 seconds)

CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1

CVE-2021-40650

https://notcve.org/view.php?id=CVE-2021-40650

14 Jun 2022 — In Connx Version 6.2.0.1269 (20210623), a cookie can be issued by the application and not have the secure flag set. En Connx Versión 6.2.0.1269 (20210623), una cookie puede ser emitida por la aplicación y no tener el flag seguro establecido • https://github.com/l00neyhacker/CVE-2021-40650 • CWE-311: Missing Encryption of Sensitive Data •

CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1

CVE-2021-40649

https://notcve.org/view.php?id=CVE-2021-40649

14 Jun 2022 — In Connx Version 6.2.0.1269 (20210623), a cookie can be issued by the application and not have the HttpOnly flag set. En Connx Versión 6.2.0.1269 (20210623), una cookie puede ser emitida por la aplicación y no tener el flag HttpOnly establecido • https://github.com/l00neyhacker/CVE-2021-40649 • CWE-732: Incorrect Permission Assignment for Critical Resource •