Fedora Pacemaker_configuration_system
2 CVEs affecting Fedora Pacemaker_configuration_system. Latest disclosed: 2015-05-14. Critical: 0, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2015-3983 | | 2015-05-14 | The pcs daemon (pcsd) in PCS 0.9.137 and earlier does not include the HTTPOnly flag in a Set-Cookie header, which makes it easier for remote attackers to obtai… | |
CVE-2015-1848 | | 2015-05-14 | The pcs daemon (pcsd) in PCS 0.9.137 and earlier does not set the secure flag for a cookie in an https session, which makes it easier for remote attackers to c… |