漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Improper cookie attributes in Foreseer Reporting Software (FRS)
Vulnerability Description
Secure flag not set and SameSIte was set to Lax in the Foreseer Reporting Software (FRS). Absence of this secure flag could lead into the session cookie being transmitted over unencrypted HTTP connections. This security issue has been resolved in the latest version of FRS v1.5.100.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:H/A:L
Vulnerability Type
敏感数据的明文传输
Vulnerability Title
Eaton Foreseer Reporting Software 安全漏洞
Vulnerability Description
Eaton Foreseer Reporting Software是美国伊顿(Eaton)公司的一款用于电力监控系统(EPMS)的报告生成工具,能够实时采集电力数据并生成分析报告,帮助企业优化能源管理和设备性能。 Eaton Foreseer Reporting Software存在安全漏洞,该漏洞源于未设置安全标志,可能导致会话cookie明文传输。
CVSS Information
N/A
Vulnerability Type
N/A