How severe is CVE-2019-8283?

CVE-2019-8283 has a CVSS v3 score of 6.5 (MEDIUM).

CVE-2019-8283

Name: sentinel_ldk
Author: gemalto

6.5MEDIUM

Hasplm cookie in Gemalto Admin Control Center, all versions prior to 7.92, does not have 'HttpOnly' flag. This allows malicious javascript to steal it.

Publicado: 6/7/2019Actualizado: 11/21/2024

Descripción

Hasplm cookie in Gemalto Admin Control Center, all versions prior to 7.92, does not have 'HttpOnly' flag. This allows malicious javascript to steal it.

Análisis IAImpulsado por IA

Productos Afectados

gemaltosentinel_ldk

Referencias

https://ics-cert.kaspersky.com/advisories/klcert-advisories/2019/06/05/klcert-19-030-hasplm-cookie-without-httponly-attribute/
Third Party Advisory
https://ics-cert.kaspersky.com/advisories/klcert-advisories/2019/06/05/klcert-19-030-hasplm-cookie-without-httponly-attribute/
Third Party Advisory