diff options
| author | Salvatore Bonaccorso <carnil@debian.org> | 2021-10-15 09:50:42 +0200 |
|---|---|---|
| committer | Salvatore Bonaccorso <carnil@debian.org> | 2021-10-15 09:50:42 +0200 |
| commit | 47994e7268c780497778e42a98347dfc6a0b1b07 (patch) | |
| tree | 187115e31e7d98b8812390452420db3461fed378 /data | |
| parent | 7f641a6b568fbd0769e0d49b5cdc3b7fcc57292f (diff) | |
Add CVE-2021-3882/ledgersmb
Diffstat (limited to 'data')
| -rw-r--r-- | data/CVE/list | 4 |
1 files changed, 3 insertions, 1 deletions
diff --git a/data/CVE/list b/data/CVE/list index e44189211b..abfdb1d887 100644 --- a/data/CVE/list +++ b/data/CVE/list @@ -487,7 +487,9 @@ CVE-2021-42264 CVE-2021-42263 RESERVED CVE-2021-3882 (LedgerSMB does not set the 'Secure' attribute on the session authoriza ...) - TODO: check + - ledgersmb <not-affected> (Vulnerable code introduced later) + NOTE: https://huntr.dev/bounties/7061d97a-98a5-495a-8ba0-3a4c66091e9d/ + NOTE: https://ledgersmb.org/content/security-advisory-cve-2021-3882-non-secure-session-cookie CVE-2021-3881 RESERVED CVE-2021-3880 |