Register
Login
Toggle navigation
SaaS Solutions
Vulnerability Intelligence
Pricing
Vulnerabilities
Reports
Blog
Contact Us
Main
Vulnerability Database
CWE List
With exploit
With patch
CWE-614 - Sensitive Cookie in HTTPS Session Without 'Secure' Attribute
Description
The Secure attribute for sensitive cookies in HTTPS sessions is not set, which could cause the user agent to send those cookies in plaintext over an HTTP session.
Latest vulnerabilities for CWE-614
Multiple vulnerabilities in IBM Storage Copy Data Management
2024-03-25
Medium
Yes
Multiple vulnerabilities in IBM Secure Proxy
2024-03-22
Critical
Yes
Multiple vulnerabilities in IBM Watson Machine Learning Accelerator on Cloud Pak for Data
2024-02-27
High
Yes
Sensitive cookie in HTTPS session without 'secure' attribute in IBM Sterling B2B Integrator
2024-02-08
Low
Yes
Sensitive cookie in HTTPS session without 'secure' attribute in IBM Security Guardium
2023-12-19
Medium
Yes
Sensitive cookie in HTTPS session without 'Secure' attribute in IBM CICS TX Advanced
2023-12-15
Low
Yes
Multiple vulnerabilities in Moxa PT-G503 Series
2023-11-06
Medium
Yes
Multiple vulnerabilities in IBM Rational Build Forge
2023-11-01
Medium
Yes
Multiple vulnerabilities in IBM UrbanCode Release
2023-10-27
High
Yes
Multiple vulnerabilities in Oracle Linux
2023-10-18
Critical
Yes
References
Description of CWE-614 on Mitre website