VYPR
Unrated severityNVD Advisory· Published Mar 4, 2019· Updated Sep 17, 2024

CVE-2018-5482

CVE-2018-5482

Description

NetApp SnapCenter Server prior to 4.1 does not set the secure flag for a sensitive cookie in an HTTPS session which can allow the transmission of the cookie in plain text over an unencrypted channel.

Affected products

2
  • NetApp/Snapcenterllm-fuzzy2 versions
    <4.1+ 1 more
    • (no CPE)range: <4.1
    • (no CPE)range: Versions prior to 4.1

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.