CWE-614 - Sensitive Cookie in HTTPS Session Without 'Secure' Attribute
The Secure attribute for sensitive cookies in HTTPS sessions is not set, which could cause the user agent to send those cookies in plaintext over an HTTP session.
Latest vulnerabilities for CWE-614
Multiple vulnerabilities in Siemens Desigo PXC and DXR Devices
Description of CWE-614 on Mitre website