Oval Definition:oval:org.opensuse.security:def:20137436
Revision Date:2019-09-27Version:1
Title:CVE-2013-7436
Description:

noVNC before 0.5 does not set the secure flag for a cookie in an https session, which makes it easier for remote attackers to capture this cookie by intercepting its transmission within an http session.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2013-7436
Platform(s):SUSE OpenStack Cloud 5
Product(s):
Definition Synopsis
  • SUSE OpenStack Cloud 5 is installed
  • AND novnc-0.4-0.13 is installed
  • BACK