CVE-2015-3207

CVE-2015-3207

Vendor N/A
Product Openshift Origin
Weakness CWE-614 · Cookie without Secure flag
Published July 7, 2022
Last update August 6, 2024

CVSS base score

What the vulnerability does

01Description

In Openshift Origin 3 the cookies being set in console have no 'secure', 'HttpOnly' attributes.

Key dates

02Disclosure timeline

July 7, 2022 CVE published
August 6, 2024 Record updated