CVE-2018-5482
published 2019-03-04CVE-2018-5482: NetApp SnapCenter Server prior to 4.1 does not set the secure flag for a sensitive cookie in an HTTPS session which can allow the transmission of the cookie in…
medium5.3CVSS 3.0
AVNACLPRNUINSUCLINAN
NetApp SnapCenter Server prior to 4.1 does not set the secure flag for a sensitive cookie in an HTTPS session which can allow the transmission of the cookie in plain text over an unencrypted channel.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| netapp | snapcenter_server | < 4.1 | 4.1 |
| netapp | snapcenter_server | — | — |