CVE-2018-12302
EUVD-2018-427613.05.2019, 13:29
Missing HTTPOnly flag on session cookies in the Seagate NAS OS version 4.3.15.1 web application allows attackers to steal session tokens via cross-site scripting.
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| seagate | nas_os | 4.3.15.1 |
𝑥
= Vulnerable software versions