High severity7.5NVD Advisory· Published Apr 20, 2017· Updated Jun 17, 2026
CVE-2016-5409
CVE-2016-5409
Description
Red Hat OpenShift Enterprise 2 does not include the HTTPOnly flag in a Set-Cookie header for the GEARID cookie, which makes it easier for remote attackers to obtain potentially sensitive information via script access to the cookies.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: 2
Patches
Vulnerability mechanics
References
2- bugzilla.redhat.com/show_bug.cginvdIssue Tracking
- www.securityfocus.com/bid/97988nvd
News mentions
0No linked articles in our index yet.