An issue was discovered on Digi TransPort Gateway devices through 5.2.13.4. They do not set the Secure attribute for sensitive cookies in HTTPS sessions, which could cause the user agent to send those cookies in cleartext over an HTTP session.
Metrics
Affected Vendors & Products
References
History
No history.

Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2024-08-04T01:16:03.601Z
Reserved: 2021-07-21T00:00:00
Link: CVE-2021-37189

No data.

Status : Modified
Published: 2021-12-10T13:15:07.753
Modified: 2024-11-21T06:14:49.620
Link: CVE-2021-37189

No data.