CVE-2021-40649
CVE-2021-40649CVE-2021-40649
softwareag / connx
Description
In Connx Version 6.2.0.1269 (20210623), a cookie can be issued by the application and not have the HttpOnly flag set.
Scoring
| CVSS | 6.5 () |
| Vector | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N |
| Last modified | 2026-07-05 |