How severe is CVE-2019-8283?

CVE-2019-8283 has a CVSS v3 score of 6.5 (MEDIUM).

CVE-2019-8283

Name: sentinel_ldk
Author: gemalto

6.5MEDIUM

Hasplm cookie in Gemalto Admin Control Center, all versions prior to 7.92, does not have 'HttpOnly' flag. This allows malicious javascript to steal it.

公開日: 6/7/2019更新日: 11/21/2024

説明

Hasplm cookie in Gemalto Admin Control Center, all versions prior to 7.92, does not have 'HttpOnly' flag. This allows malicious javascript to steal it.

AI分析AIによる分析

影響を受ける製品

gemaltosentinel_ldk

参照

https://ics-cert.kaspersky.com/advisories/klcert-advisories/2019/06/05/klcert-19-030-hasplm-cookie-without-httponly-attribute/
Third Party Advisory
https://ics-cert.kaspersky.com/advisories/klcert-advisories/2019/06/05/klcert-19-030-hasplm-cookie-without-httponly-attribute/
Third Party Advisory