No analysis available yet.
No remediation available yet.
Tracking
Sign in to view the affected projects.
No advisories yet.
Wed, 05 Mar 2025 15:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Wed, 05 Mar 2025 09:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Secure flag not set and SameSIte was set to Lax in the Foreseer Reporting Software (FRS). Absence of this secure flag could lead into the session cookie being transmitted over unencrypted HTTP connections. This security issue has been resolved in the latest version of FRS v1.5.100. | |
| Title | Improper cookie attributes in Foreseer Reporting Software (FRS) | |
| Weaknesses | CWE-319 | |
| References |
| |
| Metrics |
cvssV3_1
|
Subscriptions
No data.
Status: PUBLISHED
Assigner: Eaton
Published:
Updated: 2025-03-05T14:50:42.281Z
Reserved: 2025-01-07T09:41:16.734Z
Link: CVE-2025-22493
Updated: 2025-03-05T14:50:37.276Z
Status : Deferred
Published: 2025-03-05T09:15:10.443
Modified: 2026-06-17T08:47:45.003
Link: CVE-2025-22493
No data.
OpenCVE Enrichment
No data.
-
CWE-319
Cleartext Transmission of Sensitive Information