Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
HCL BigFix WebUI Cookie missing attributes
Vulnerability Description
Cookie without HTTPONLY flag set. NUMBER cookie(s) was set without Secure or HTTPOnly flags. The images show the cookie with the missing flag. (WebUI)
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N
Vulnerability Type
HTTPS会话中未设置’Secure’属性的敏感Cookie
Vulnerability Title
HCL BigFix Platform 安全漏洞
Vulnerability Description
HCL Technologies HCL BigFix Platform是印度HCL Technologies公司的一套端点安全管理平台。该平台支持自动发现、管理和修复端点安全问题。 HCL BigFix Platform 存在安全漏洞,该漏洞源于没有设置有HTTPONLY标志的Cookie。
CVSS Information
N/A
Vulnerability Type
N/A