Lucene search
PRIOn knowledge basePRION:CVE-2016-6344HistorySep 07, 2016 - 6:59 p.m.
Design/Logic Flaw
2016-09-0718:59:00
PRIOn knowledge base
www.prio-n.com
5
Red Hat JBoss BPM Suite 6.3.x does not include the HTTPOnly flag in a Set-Cookie header for session cookies, which makes it easier for remote attackers to obtain potentially sensitive information via script access to the cookies.
| CPE | Name | Operator | Version |
|---|---|---|---|
| jboss_bpm_suite | eq | 6.3 |
Related
cvelist
cvelist
CVE-2016-6344
2016-09-07 18:00:00
cve
cve
CVE-2016-6344
2016-09-07 18:59:00
redhatcve
redhatcve
CVE-2016-6344
2016-08-31 07:48:32
nvd
nvd
CVE-2016-6344
2016-09-07 18:59:00
redhat
redhat
(RHSA-2017:0248) Moderate: Red Hat JBoss BRMS security update
2017-02-02 20:26:59
(RHSA-2017:0249) Moderate: Red Hat JBoss BPM Suite security update
2017-02-02 20:27:13