CVE-2021-40649

In Connx Version 6.2.0.1269 (20210623), a cookie can be issued by the application and not have the HttpOnly flag set.
References
Link Resource
http://connx.com Product
https://github.com/l00neyhacker/CVE-2021-40649 Exploit Third Party Advisory
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

cpe:2.3:a:softwareag:connx:6.2.0.1269:*:*:*:*:*:*:*

Information

Published : 2022-06-14 03:15

Updated : 2022-06-22 13:25


NVD link : CVE-2021-40649

Mitre link : CVE-2021-40649


JSON object : View

CWE
CWE-732

Incorrect Permission Assignment for Critical Resource

Advertisement

dedicated server usa

Products Affected

softwareag

  • connx