CVE-2024-35211 Information

Description

A vulnerability has been identified in SINEC Traffic Analyzer (6GK8822-1BG01-0BA0) (All versions < V1.2). The affected web server after a successful login sets the session cookie on the browser without applying any security attributes (such as “Secure” “HttpOnly” or “SameSite”).

Reference

https://cert-portal.siemens.com/productcert/html/ssa-196737.html