Fallos del tipo CWE-614
59 resultadosCVE-2026-11956MEDIUMTwiN gatus OIDC Session Cookie oidc.go setSessionCookie missing secure attributeEPSS 0.2%CVE-2026-46398HIGHHAX CMS Missing Secure Flag on CookieEPSS 0.2%CVE-2024-55897MEDIUMIBM PowerHA SystemMirror for i information disclosureEPSS 0.2%CVE-2024-28771MEDIUMIBM Security Directory Integrator information disclosureEPSS 0.2%CVE-2024-28770MEDIUMIBM Security Directory Integrator information disclosureEPSS 0.2%CVE-2026-22617MEDIUMEaton Intelligent Power Protector (IPP) uses an insecure cookie configuration, which could allow a network‑based attacker to intercept the cEPSS 0.2%CVE-2025-36011MEDIUMIBM Jazz for Service Management information disclosureEPSS 0.2%CVE-2024-58317MEDIUMKentico Xperience <= 13.0.164 Cookie Security ConfigurationEPSS 0.2%CVE-2025-36026MEDIUMIBM Datacap information disclosureEPSS 0.1%CVE-2025-52632MEDIUMHCL AION is susceptible to Missing Secure Attribute in Encrypted Session (SSL) Cookie vulnerabilityEPSS 0.1%CVE-2025-36249LOWIBM Jazz for Service Management is vulnerable to "filter" cookie not sent over SSLEPSS 0.1%CVE-2025-24897HIGHMisskey CSRF vulnerability due to insecure configuration of authentication cookie attributesEPSS 0.1%CVE-2025-52614LOWHCL Unica Platform is affected by a Cookie without HTTPOnly Flag Set vulnerabilityEPSS 0.1%CVE-2026-4820MEDIUMIBM Maximo Application Suite was vulnerable to because Cookie ltpatoken2_<workspace_name> was not set with secure flagEPSS 0.1%CVE-2026-1697MEDIUMUse of unsecure cookies for GraphicalData web service and WebClient web appEPSS 0.1%CVE-2024-30142LOWHCL BigFix Compliance is affected by a missing secure flag on a cookieEPSS 0.1%CVE-2026-32745MEDIUMIn JetBrains Datalore before 2026.1 session hijacking was possible due to missing secure attribute for cookie settingsEPSS 0.1%CVE-2026-46550MEDIUMNocoDB: Refresh Token Cookie Set Without `Secure` and `SameSite` FlagsEPSS 0.1%CVE-2025-52608LOWHCL iControl was affected by Missing Cookie Attributes vulnerability.EPSS 0.1%