Vulnerability-Lookup

CVE-2013-7436 (GCVE-0-2013-7436)

Vulnerability from cvelistv5 – Published: 2015-04-10 14:00 – Updated: 2024-08-06 18:09

Summary

noVNC before 0.5 does not set the secure flag for a cookie in an https session, which makes it easier for remote attackers to capture this cookie by intercepting its transmission within an http session.

Severity ?

No CVSS data available.

CWE

Assigner

mitre

References

URL

RHSA-2015:0788

Vulnerability from csaf_redhat - Published: 2015-04-07 15:08 - Updated: 2025-11-21 17:52

Summary

Red Hat Security Advisory: novnc security update

Notes

Topic

An updated novnc package that fixes one security issue is now available for Red Hat Enterprise Linux OpenStack Platform 6.0. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section.

Details

The novnc package provides a VNC client that uses HTML5 (Web Sockets, Canvas) and includes encryption support. It was discovered that noVNC did not properly set the 'secure' flag when issuing cookies. An attacker could use this flaw to intercept cookies via a man-in-the-middle attack. (CVE-2013-7436) All novnc users are advised to upgrade to this updated package, which corrects this issue.

This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An updated novnc package that fixes one security issue is now available for\nRed Hat Enterprise Linux OpenStack Platform 6.0.\n\nRed Hat Product Security has rated this update as having Moderate security\nimpact. A Common Vulnerability Scoring System (CVSS) base score, which\ngives a detailed severity rating, is available from the CVE link in the\nReferences section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "The novnc package provides a VNC client that uses HTML5 (Web Sockets,\nCanvas) and includes encryption support.\n\nIt was discovered that noVNC did not properly set the \u0027secure\u0027 flag when\nissuing cookies. An attacker could use this flaw to intercept cookies via a\nman-in-the-middle attack. (CVE-2013-7436)\n\nAll novnc users are advised to upgrade to this updated package, which\ncorrects this issue.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2015:0788",
        "url": "https://access.redhat.com/errata/RHSA-2015:0788"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#moderate",
        "url": "https://access.redhat.com/security/updates/classification/#moderate"
      },
      {
        "category": "external",
        "summary": "1193451",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1193451"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2015/rhsa-2015_0788.json"
      }
    ],
    "title": "Red Hat Security Advisory: novnc security update",
    "tracking": {
      "current_release_date": "2025-11-21T17:52:07+00:00",
      "generator": {
        "date": "2025-11-21T17:52:07+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.6.12"
        }
      },
      "id": "RHSA-2015:0788",
      "initial_release_date": "2015-04-07T15:08:12+00:00",
      "revision_history": [
        {
          "date": "2015-04-07T15:08:12+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2015-04-07T15:08:12+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2025-11-21T17:52:07+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux OpenStack Platform 6.0 (Juno) for RHEL 7",
                "product": {
                  "name": "Red Hat Enterprise Linux OpenStack Platform 6.0 (Juno) for RHEL 7",
                  "product_id": "7Server-RH7-RHOS-6.0",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openstack:6::el7"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat OpenStack Platform"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "novnc-0:0.5.1-2.el7ost.src",
                "product": {
                  "name": "novnc-0:0.5.1-2.el7ost.src",
                  "product_id": "novnc-0:0.5.1-2.el7ost.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/novnc@0.5.1-2.el7ost?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "novnc-0:0.5.1-2.el7ost.noarch",
                "product": {
                  "name": "novnc-0:0.5.1-2.el7ost.noarch",
                  "product_id": "novnc-0:0.5.1-2.el7ost.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/novnc@0.5.1-2.el7ost?arch=noarch"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "novnc-0:0.5.1-2.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 6.0 (Juno) for RHEL 7",
          "product_id": "7Server-RH7-RHOS-6.0:novnc-0:0.5.1-2.el7ost.noarch"
        },
        "product_reference": "novnc-0:0.5.1-2.el7ost.noarch",
        "relates_to_product_reference": "7Server-RH7-RHOS-6.0"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "novnc-0:0.5.1-2.el7ost.src as a component of Red Hat Enterprise Linux OpenStack Platform 6.0 (Juno) for RHEL 7",
          "product_id": "7Server-RH7-RHOS-6.0:novnc-0:0.5.1-2.el7ost.src"
        },
        "product_reference": "novnc-0:0.5.1-2.el7ost.src",
        "relates_to_product_reference": "7Server-RH7-RHOS-6.0"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2013-7436",
      "cwe": {
        "id": "CWE-319",
        "name": "Cleartext Transmission of Sensitive Information"
      },
      "discovery_date": "2015-02-17T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1193451"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "It was discovered that noVNC did not properly set the \u0027secure\u0027 flag when issuing cookies. An attacker could use this flaw to intercept cookies via a man-in-the-middle attack.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "novnc: session hijack through insecurely set session token cookies",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-RH7-RHOS-6.0:novnc-0:0.5.1-2.el7ost.noarch",
          "7Server-RH7-RHOS-6.0:novnc-0:0.5.1-2.el7ost.src"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2013-7436"
        },
        {
          "category": "external",
          "summary": "RHBZ#1193451",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1193451"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2013-7436",
          "url": "https://www.cve.org/CVERecord?id=CVE-2013-7436"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-7436",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-7436"
        }
      ],
      "release_date": "2013-10-28T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2015-04-07T15:08:12+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "7Server-RH7-RHOS-6.0:novnc-0:0.5.1-2.el7ost.noarch",
            "7Server-RH7-RHOS-6.0:novnc-0:0.5.1-2.el7ost.src"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2015:0788"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 6.8,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "products": [
            "7Server-RH7-RHOS-6.0:novnc-0:0.5.1-2.el7ost.noarch",
            "7Server-RH7-RHOS-6.0:novnc-0:0.5.1-2.el7ost.src"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "novnc: session hijack through insecurely set session token cookies"
    }
  ]
}

RHSA-2015:0833

Vulnerability from csaf_redhat - Published: 2015-04-16 13:53 - Updated: 2025-11-21 17:52

Summary

Red Hat Security Advisory: novnc security update

Notes

Topic

An updated novnc package that fixes one security issue is now available for Red Hat Enterprise Linux OpenStack Platform 5.0 for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section.

Details

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An updated novnc package that fixes one security issue is now available for\nRed Hat Enterprise Linux OpenStack Platform 5.0 for Red Hat Enterprise\nLinux 6.\n\nRed Hat Product Security has rated this update as having Moderate security\nimpact. A Common Vulnerability Scoring System (CVSS) base score, which\ngives a detailed severity rating, is available from the CVE link in the\nReferences section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "The novnc package provides a VNC client that uses HTML5 (Web Sockets,\nCanvas) and includes encryption support.\n\nIt was discovered that noVNC did not properly set the \u0027secure\u0027 flag when\nissuing cookies. An attacker could use this flaw to intercept cookies via a\nman-in-the-middle attack. (CVE-2013-7436)\n\nAll novnc users are advised to upgrade to this updated package, which\ncorrects this issue.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2015:0833",
        "url": "https://access.redhat.com/errata/RHSA-2015:0833"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#moderate",
        "url": "https://access.redhat.com/security/updates/classification/#moderate"
      },
      {
        "category": "external",
        "summary": "1193451",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1193451"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2015/rhsa-2015_0833.json"
      }
    ],
    "title": "Red Hat Security Advisory: novnc security update",
    "tracking": {
      "current_release_date": "2025-11-21T17:52:14+00:00",
      "generator": {
        "date": "2025-11-21T17:52:14+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.6.12"
        }
      },
      "id": "RHSA-2015:0833",
      "initial_release_date": "2015-04-16T13:53:08+00:00",
      "revision_history": [
        {
          "date": "2015-04-16T13:53:08+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2015-04-16T13:53:08+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2025-11-21T17:52:14+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 6",
                "product": {
                  "name": "Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 6",
                  "product_id": "6Server-RH6-RHOS-5.0",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openstack:5::el6"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat OpenStack Platform"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "novnc-0:0.5.1-2.el6ost.src",
                "product": {
                  "name": "novnc-0:0.5.1-2.el6ost.src",
                  "product_id": "novnc-0:0.5.1-2.el6ost.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/novnc@0.5.1-2.el6ost?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "novnc-0:0.5.1-2.el6ost.noarch",
                "product": {
                  "name": "novnc-0:0.5.1-2.el6ost.noarch",
                  "product_id": "novnc-0:0.5.1-2.el6ost.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/novnc@0.5.1-2.el6ost?arch=noarch"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "novnc-0:0.5.1-2.el6ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 6",
          "product_id": "6Server-RH6-RHOS-5.0:novnc-0:0.5.1-2.el6ost.noarch"
        },
        "product_reference": "novnc-0:0.5.1-2.el6ost.noarch",
        "relates_to_product_reference": "6Server-RH6-RHOS-5.0"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "novnc-0:0.5.1-2.el6ost.src as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 6",
          "product_id": "6Server-RH6-RHOS-5.0:novnc-0:0.5.1-2.el6ost.src"
        },
        "product_reference": "novnc-0:0.5.1-2.el6ost.src",
        "relates_to_product_reference": "6Server-RH6-RHOS-5.0"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2013-7436",
      "cwe": {
        "id": "CWE-319",
        "name": "Cleartext Transmission of Sensitive Information"
      },
      "discovery_date": "2015-02-17T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1193451"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "It was discovered that noVNC did not properly set the \u0027secure\u0027 flag when issuing cookies. An attacker could use this flaw to intercept cookies via a man-in-the-middle attack.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "novnc: session hijack through insecurely set session token cookies",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-RH6-RHOS-5.0:novnc-0:0.5.1-2.el6ost.noarch",
          "6Server-RH6-RHOS-5.0:novnc-0:0.5.1-2.el6ost.src"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2013-7436"
        },
        {
          "category": "external",
          "summary": "RHBZ#1193451",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1193451"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2013-7436",
          "url": "https://www.cve.org/CVERecord?id=CVE-2013-7436"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-7436",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-7436"
        }
      ],
      "release_date": "2013-10-28T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2015-04-16T13:53:08+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "6Server-RH6-RHOS-5.0:novnc-0:0.5.1-2.el6ost.noarch",
            "6Server-RH6-RHOS-5.0:novnc-0:0.5.1-2.el6ost.src"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2015:0833"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 6.8,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "products": [
            "6Server-RH6-RHOS-5.0:novnc-0:0.5.1-2.el6ost.noarch",
            "6Server-RH6-RHOS-5.0:novnc-0:0.5.1-2.el6ost.src"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "novnc: session hijack through insecurely set session token cookies"
    }
  ]
}

RHSA-2015_0884

Vulnerability from csaf_redhat - Published: 2015-04-23 13:04 - Updated: 2024-11-22 09:02

Summary

Red Hat Security Advisory: novnc security update

Notes

Topic

An updated novnc package that fixes one security issue is now available for Red Hat Enterprise Linux OpenStack Platform 4.0. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section.

Details

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An updated novnc package that fixes one security issue is now available for\nRed Hat Enterprise Linux OpenStack Platform 4.0.\n\nRed Hat Product Security has rated this update as having Moderate security\nimpact. A Common Vulnerability Scoring System (CVSS) base score, which\ngives a detailed severity rating, is available from the CVE link in the\nReferences section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "The novnc package provides a VNC client that uses HTML5 (Web Sockets,\nCanvas) and includes encryption support.\n\nIt was discovered that noVNC did not properly set the \u0027secure\u0027 flag when\nissuing cookies. An attacker could use this flaw to intercept cookies via a\nman-in-the-middle attack. (CVE-2013-7436)\n\nAll novnc users are advised to upgrade to this updated package, which\ncorrects this issue.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2015:0884",
        "url": "https://access.redhat.com/errata/RHSA-2015:0884"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#moderate",
        "url": "https://access.redhat.com/security/updates/classification/#moderate"
      },
      {
        "category": "external",
        "summary": "1193451",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1193451"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2015/rhsa-2015_0884.json"
      }
    ],
    "title": "Red Hat Security Advisory: novnc security update",
    "tracking": {
      "current_release_date": "2024-11-22T09:02:34+00:00",
      "generator": {
        "date": "2024-11-22T09:02:34+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.2.1"
        }
      },
      "id": "RHSA-2015:0884",
      "initial_release_date": "2015-04-23T13:04:07+00:00",
      "revision_history": [
        {
          "date": "2015-04-23T13:04:07+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2015-04-23T13:04:07+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2024-11-22T09:02:34+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux OpenStack Platform 4.0",
                "product": {
                  "name": "Red Hat Enterprise Linux OpenStack Platform 4.0",
                  "product_id": "6Server-RHOS-4.0",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openstack:4::el6"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat OpenStack Platform"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "novnc-0:0.5.1-2.el6ost.src",
                "product": {
                  "name": "novnc-0:0.5.1-2.el6ost.src",
                  "product_id": "novnc-0:0.5.1-2.el6ost.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/novnc@0.5.1-2.el6ost?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "novnc-0:0.5.1-2.el6ost.noarch",
                "product": {
                  "name": "novnc-0:0.5.1-2.el6ost.noarch",
                  "product_id": "novnc-0:0.5.1-2.el6ost.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/novnc@0.5.1-2.el6ost?arch=noarch"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "novnc-0:0.5.1-2.el6ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 4.0",
          "product_id": "6Server-RHOS-4.0:novnc-0:0.5.1-2.el6ost.noarch"
        },
        "product_reference": "novnc-0:0.5.1-2.el6ost.noarch",
        "relates_to_product_reference": "6Server-RHOS-4.0"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "novnc-0:0.5.1-2.el6ost.src as a component of Red Hat Enterprise Linux OpenStack Platform 4.0",
          "product_id": "6Server-RHOS-4.0:novnc-0:0.5.1-2.el6ost.src"
        },
        "product_reference": "novnc-0:0.5.1-2.el6ost.src",
        "relates_to_product_reference": "6Server-RHOS-4.0"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2013-7436",
      "cwe": {
        "id": "CWE-319",
        "name": "Cleartext Transmission of Sensitive Information"
      },
      "discovery_date": "2015-02-17T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1193451"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "It was discovered that noVNC did not properly set the \u0027secure\u0027 flag when issuing cookies. An attacker could use this flaw to intercept cookies via a man-in-the-middle attack.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "novnc: session hijack through insecurely set session token cookies",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-RHOS-4.0:novnc-0:0.5.1-2.el6ost.noarch",
          "6Server-RHOS-4.0:novnc-0:0.5.1-2.el6ost.src"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2013-7436"
        },
        {
          "category": "external",
          "summary": "RHBZ#1193451",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1193451"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2013-7436",
          "url": "https://www.cve.org/CVERecord?id=CVE-2013-7436"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-7436",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-7436"
        }
      ],
      "release_date": "2013-10-28T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2015-04-23T13:04:07+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "6Server-RHOS-4.0:novnc-0:0.5.1-2.el6ost.noarch",
            "6Server-RHOS-4.0:novnc-0:0.5.1-2.el6ost.src"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2015:0884"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 6.8,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "products": [
            "6Server-RHOS-4.0:novnc-0:0.5.1-2.el6ost.noarch",
            "6Server-RHOS-4.0:novnc-0:0.5.1-2.el6ost.src"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "novnc: session hijack through insecurely set session token cookies"
    }
  ]
}

RHSA-2015:0834

Vulnerability from csaf_redhat - Published: 2015-04-16 13:53 - Updated: 2025-11-21 17:52

Summary

Red Hat Security Advisory: novnc security update

Notes

Topic

An updated novnc package that fixes one security issue is now available for Red Hat Enterprise Linux OpenStack Platform 5.0 for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section.

Details

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An updated novnc package that fixes one security issue is now available for\nRed Hat Enterprise Linux OpenStack Platform 5.0 for Red Hat Enterprise\nLinux 7.\n\nRed Hat Product Security has rated this update as having Moderate security\nimpact. A Common Vulnerability Scoring System (CVSS) base score, which\ngives a detailed severity rating, is available from the CVE link in the\nReferences section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "The novnc package provides a VNC client that uses HTML5 (Web Sockets,\nCanvas) and includes encryption support.\n\nIt was discovered that noVNC did not properly set the \u0027secure\u0027 flag when\nissuing cookies. An attacker could use this flaw to intercept cookies via a\nman-in-the-middle attack. (CVE-2013-7436)\n\nAll novnc users are advised to upgrade to this updated package, which\ncorrects this issue.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2015:0834",
        "url": "https://access.redhat.com/errata/RHSA-2015:0834"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#moderate",
        "url": "https://access.redhat.com/security/updates/classification/#moderate"
      },
      {
        "category": "external",
        "summary": "1193451",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1193451"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2015/rhsa-2015_0834.json"
      }
    ],
    "title": "Red Hat Security Advisory: novnc security update",
    "tracking": {
      "current_release_date": "2025-11-21T17:52:14+00:00",
      "generator": {
        "date": "2025-11-21T17:52:14+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.6.12"
        }
      },
      "id": "RHSA-2015:0834",
      "initial_release_date": "2015-04-16T13:53:00+00:00",
      "revision_history": [
        {
          "date": "2015-04-16T13:53:00+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2015-04-16T13:53:00+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2025-11-21T17:52:14+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7",
                "product": {
                  "name": "Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7",
                  "product_id": "7Server-RH7-RHOS-5.0",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openstack:5::el7"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat OpenStack Platform"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "novnc-0:0.5.1-2.el7ost.src",
                "product": {
                  "name": "novnc-0:0.5.1-2.el7ost.src",
                  "product_id": "novnc-0:0.5.1-2.el7ost.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/novnc@0.5.1-2.el7ost?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "novnc-0:0.5.1-2.el7ost.noarch",
                "product": {
                  "name": "novnc-0:0.5.1-2.el7ost.noarch",
                  "product_id": "novnc-0:0.5.1-2.el7ost.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/novnc@0.5.1-2.el7ost?arch=noarch"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "novnc-0:0.5.1-2.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7",
          "product_id": "7Server-RH7-RHOS-5.0:novnc-0:0.5.1-2.el7ost.noarch"
        },
        "product_reference": "novnc-0:0.5.1-2.el7ost.noarch",
        "relates_to_product_reference": "7Server-RH7-RHOS-5.0"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "novnc-0:0.5.1-2.el7ost.src as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7",
          "product_id": "7Server-RH7-RHOS-5.0:novnc-0:0.5.1-2.el7ost.src"
        },
        "product_reference": "novnc-0:0.5.1-2.el7ost.src",
        "relates_to_product_reference": "7Server-RH7-RHOS-5.0"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2013-7436",
      "cwe": {
        "id": "CWE-319",
        "name": "Cleartext Transmission of Sensitive Information"
      },
      "discovery_date": "2015-02-17T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1193451"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "It was discovered that noVNC did not properly set the \u0027secure\u0027 flag when issuing cookies. An attacker could use this flaw to intercept cookies via a man-in-the-middle attack.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "novnc: session hijack through insecurely set session token cookies",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-RH7-RHOS-5.0:novnc-0:0.5.1-2.el7ost.noarch",
          "7Server-RH7-RHOS-5.0:novnc-0:0.5.1-2.el7ost.src"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2013-7436"
        },
        {
          "category": "external",
          "summary": "RHBZ#1193451",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1193451"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2013-7436",
          "url": "https://www.cve.org/CVERecord?id=CVE-2013-7436"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-7436",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-7436"
        }
      ],
      "release_date": "2013-10-28T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2015-04-16T13:53:00+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "7Server-RH7-RHOS-5.0:novnc-0:0.5.1-2.el7ost.noarch",
            "7Server-RH7-RHOS-5.0:novnc-0:0.5.1-2.el7ost.src"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2015:0834"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 6.8,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "products": [
            "7Server-RH7-RHOS-5.0:novnc-0:0.5.1-2.el7ost.noarch",
            "7Server-RH7-RHOS-5.0:novnc-0:0.5.1-2.el7ost.src"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "novnc: session hijack through insecurely set session token cookies"
    }
  ]
}

RHSA-2015_0833

Vulnerability from csaf_redhat - Published: 2015-04-16 13:53 - Updated: 2024-11-22 09:02

Summary

Red Hat Security Advisory: novnc security update

Notes

Topic

Details

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An updated novnc package that fixes one security issue is now available for\nRed Hat Enterprise Linux OpenStack Platform 5.0 for Red Hat Enterprise\nLinux 6.\n\nRed Hat Product Security has rated this update as having Moderate security\nimpact. A Common Vulnerability Scoring System (CVSS) base score, which\ngives a detailed severity rating, is available from the CVE link in the\nReferences section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "The novnc package provides a VNC client that uses HTML5 (Web Sockets,\nCanvas) and includes encryption support.\n\nIt was discovered that noVNC did not properly set the \u0027secure\u0027 flag when\nissuing cookies. An attacker could use this flaw to intercept cookies via a\nman-in-the-middle attack. (CVE-2013-7436)\n\nAll novnc users are advised to upgrade to this updated package, which\ncorrects this issue.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2015:0833",
        "url": "https://access.redhat.com/errata/RHSA-2015:0833"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#moderate",
        "url": "https://access.redhat.com/security/updates/classification/#moderate"
      },
      {
        "category": "external",
        "summary": "1193451",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1193451"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2015/rhsa-2015_0833.json"
      }
    ],
    "title": "Red Hat Security Advisory: novnc security update",
    "tracking": {
      "current_release_date": "2024-11-22T09:02:29+00:00",
      "generator": {
        "date": "2024-11-22T09:02:29+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.2.1"
        }
      },
      "id": "RHSA-2015:0833",
      "initial_release_date": "2015-04-16T13:53:08+00:00",
      "revision_history": [
        {
          "date": "2015-04-16T13:53:08+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2015-04-16T13:53:08+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2024-11-22T09:02:29+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 6",
                "product": {
                  "name": "Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 6",
                  "product_id": "6Server-RH6-RHOS-5.0",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openstack:5::el6"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat OpenStack Platform"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "novnc-0:0.5.1-2.el6ost.src",
                "product": {
                  "name": "novnc-0:0.5.1-2.el6ost.src",
                  "product_id": "novnc-0:0.5.1-2.el6ost.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/novnc@0.5.1-2.el6ost?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "novnc-0:0.5.1-2.el6ost.noarch",
                "product": {
                  "name": "novnc-0:0.5.1-2.el6ost.noarch",
                  "product_id": "novnc-0:0.5.1-2.el6ost.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/novnc@0.5.1-2.el6ost?arch=noarch"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "novnc-0:0.5.1-2.el6ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 6",
          "product_id": "6Server-RH6-RHOS-5.0:novnc-0:0.5.1-2.el6ost.noarch"
        },
        "product_reference": "novnc-0:0.5.1-2.el6ost.noarch",
        "relates_to_product_reference": "6Server-RH6-RHOS-5.0"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "novnc-0:0.5.1-2.el6ost.src as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 6",
          "product_id": "6Server-RH6-RHOS-5.0:novnc-0:0.5.1-2.el6ost.src"
        },
        "product_reference": "novnc-0:0.5.1-2.el6ost.src",
        "relates_to_product_reference": "6Server-RH6-RHOS-5.0"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2013-7436",
      "cwe": {
        "id": "CWE-319",
        "name": "Cleartext Transmission of Sensitive Information"
      },
      "discovery_date": "2015-02-17T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1193451"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "It was discovered that noVNC did not properly set the \u0027secure\u0027 flag when issuing cookies. An attacker could use this flaw to intercept cookies via a man-in-the-middle attack.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "novnc: session hijack through insecurely set session token cookies",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-RH6-RHOS-5.0:novnc-0:0.5.1-2.el6ost.noarch",
          "6Server-RH6-RHOS-5.0:novnc-0:0.5.1-2.el6ost.src"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2013-7436"
        },
        {
          "category": "external",
          "summary": "RHBZ#1193451",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1193451"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2013-7436",
          "url": "https://www.cve.org/CVERecord?id=CVE-2013-7436"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-7436",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-7436"
        }
      ],
      "release_date": "2013-10-28T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2015-04-16T13:53:08+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "6Server-RH6-RHOS-5.0:novnc-0:0.5.1-2.el6ost.noarch",
            "6Server-RH6-RHOS-5.0:novnc-0:0.5.1-2.el6ost.src"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2015:0833"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 6.8,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "products": [
            "6Server-RH6-RHOS-5.0:novnc-0:0.5.1-2.el6ost.noarch",
            "6Server-RH6-RHOS-5.0:novnc-0:0.5.1-2.el6ost.src"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "novnc: session hijack through insecurely set session token cookies"
    }
  ]
}

RHSA-2015_0788

Vulnerability from csaf_redhat - Published: 2015-04-07 15:08 - Updated: 2024-11-22 09:02

Summary

Red Hat Security Advisory: novnc security update

Notes

Topic

Details

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An updated novnc package that fixes one security issue is now available for\nRed Hat Enterprise Linux OpenStack Platform 6.0.\n\nRed Hat Product Security has rated this update as having Moderate security\nimpact. A Common Vulnerability Scoring System (CVSS) base score, which\ngives a detailed severity rating, is available from the CVE link in the\nReferences section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "The novnc package provides a VNC client that uses HTML5 (Web Sockets,\nCanvas) and includes encryption support.\n\nIt was discovered that noVNC did not properly set the \u0027secure\u0027 flag when\nissuing cookies. An attacker could use this flaw to intercept cookies via a\nman-in-the-middle attack. (CVE-2013-7436)\n\nAll novnc users are advised to upgrade to this updated package, which\ncorrects this issue.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2015:0788",
        "url": "https://access.redhat.com/errata/RHSA-2015:0788"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#moderate",
        "url": "https://access.redhat.com/security/updates/classification/#moderate"
      },
      {
        "category": "external",
        "summary": "1193451",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1193451"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2015/rhsa-2015_0788.json"
      }
    ],
    "title": "Red Hat Security Advisory: novnc security update",
    "tracking": {
      "current_release_date": "2024-11-22T09:02:21+00:00",
      "generator": {
        "date": "2024-11-22T09:02:21+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.2.1"
        }
      },
      "id": "RHSA-2015:0788",
      "initial_release_date": "2015-04-07T15:08:12+00:00",
      "revision_history": [
        {
          "date": "2015-04-07T15:08:12+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2015-04-07T15:08:12+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2024-11-22T09:02:21+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux OpenStack Platform 6.0 (Juno) for RHEL 7",
                "product": {
                  "name": "Red Hat Enterprise Linux OpenStack Platform 6.0 (Juno) for RHEL 7",
                  "product_id": "7Server-RH7-RHOS-6.0",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openstack:6::el7"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat OpenStack Platform"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "novnc-0:0.5.1-2.el7ost.src",
                "product": {
                  "name": "novnc-0:0.5.1-2.el7ost.src",
                  "product_id": "novnc-0:0.5.1-2.el7ost.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/novnc@0.5.1-2.el7ost?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "novnc-0:0.5.1-2.el7ost.noarch",
                "product": {
                  "name": "novnc-0:0.5.1-2.el7ost.noarch",
                  "product_id": "novnc-0:0.5.1-2.el7ost.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/novnc@0.5.1-2.el7ost?arch=noarch"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "novnc-0:0.5.1-2.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 6.0 (Juno) for RHEL 7",
          "product_id": "7Server-RH7-RHOS-6.0:novnc-0:0.5.1-2.el7ost.noarch"
        },
        "product_reference": "novnc-0:0.5.1-2.el7ost.noarch",
        "relates_to_product_reference": "7Server-RH7-RHOS-6.0"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "novnc-0:0.5.1-2.el7ost.src as a component of Red Hat Enterprise Linux OpenStack Platform 6.0 (Juno) for RHEL 7",
          "product_id": "7Server-RH7-RHOS-6.0:novnc-0:0.5.1-2.el7ost.src"
        },
        "product_reference": "novnc-0:0.5.1-2.el7ost.src",
        "relates_to_product_reference": "7Server-RH7-RHOS-6.0"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2013-7436",
      "cwe": {
        "id": "CWE-319",
        "name": "Cleartext Transmission of Sensitive Information"
      },
      "discovery_date": "2015-02-17T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1193451"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "It was discovered that noVNC did not properly set the \u0027secure\u0027 flag when issuing cookies. An attacker could use this flaw to intercept cookies via a man-in-the-middle attack.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "novnc: session hijack through insecurely set session token cookies",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-RH7-RHOS-6.0:novnc-0:0.5.1-2.el7ost.noarch",
          "7Server-RH7-RHOS-6.0:novnc-0:0.5.1-2.el7ost.src"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2013-7436"
        },
        {
          "category": "external",
          "summary": "RHBZ#1193451",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1193451"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2013-7436",
          "url": "https://www.cve.org/CVERecord?id=CVE-2013-7436"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-7436",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-7436"
        }
      ],
      "release_date": "2013-10-28T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2015-04-07T15:08:12+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "7Server-RH7-RHOS-6.0:novnc-0:0.5.1-2.el7ost.noarch",
            "7Server-RH7-RHOS-6.0:novnc-0:0.5.1-2.el7ost.src"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2015:0788"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 6.8,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "products": [
            "7Server-RH7-RHOS-6.0:novnc-0:0.5.1-2.el7ost.noarch",
            "7Server-RH7-RHOS-6.0:novnc-0:0.5.1-2.el7ost.src"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "novnc: session hijack through insecurely set session token cookies"
    }
  ]
}

RHSA-2015:0884

Vulnerability from csaf_redhat - Published: 2015-04-23 13:04 - Updated: 2025-11-21 17:52

Summary

Red Hat Security Advisory: novnc security update

Notes

Topic

Details

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An updated novnc package that fixes one security issue is now available for\nRed Hat Enterprise Linux OpenStack Platform 4.0.\n\nRed Hat Product Security has rated this update as having Moderate security\nimpact. A Common Vulnerability Scoring System (CVSS) base score, which\ngives a detailed severity rating, is available from the CVE link in the\nReferences section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "The novnc package provides a VNC client that uses HTML5 (Web Sockets,\nCanvas) and includes encryption support.\n\nIt was discovered that noVNC did not properly set the \u0027secure\u0027 flag when\nissuing cookies. An attacker could use this flaw to intercept cookies via a\nman-in-the-middle attack. (CVE-2013-7436)\n\nAll novnc users are advised to upgrade to this updated package, which\ncorrects this issue.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2015:0884",
        "url": "https://access.redhat.com/errata/RHSA-2015:0884"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#moderate",
        "url": "https://access.redhat.com/security/updates/classification/#moderate"
      },
      {
        "category": "external",
        "summary": "1193451",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1193451"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2015/rhsa-2015_0884.json"
      }
    ],
    "title": "Red Hat Security Advisory: novnc security update",
    "tracking": {
      "current_release_date": "2025-11-21T17:52:24+00:00",
      "generator": {
        "date": "2025-11-21T17:52:24+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.6.12"
        }
      },
      "id": "RHSA-2015:0884",
      "initial_release_date": "2015-04-23T13:04:07+00:00",
      "revision_history": [
        {
          "date": "2015-04-23T13:04:07+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2015-04-23T13:04:07+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2025-11-21T17:52:24+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux OpenStack Platform 4.0",
                "product": {
                  "name": "Red Hat Enterprise Linux OpenStack Platform 4.0",
                  "product_id": "6Server-RHOS-4.0",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openstack:4::el6"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat OpenStack Platform"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "novnc-0:0.5.1-2.el6ost.src",
                "product": {
                  "name": "novnc-0:0.5.1-2.el6ost.src",
                  "product_id": "novnc-0:0.5.1-2.el6ost.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/novnc@0.5.1-2.el6ost?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "novnc-0:0.5.1-2.el6ost.noarch",
                "product": {
                  "name": "novnc-0:0.5.1-2.el6ost.noarch",
                  "product_id": "novnc-0:0.5.1-2.el6ost.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/novnc@0.5.1-2.el6ost?arch=noarch"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "novnc-0:0.5.1-2.el6ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 4.0",
          "product_id": "6Server-RHOS-4.0:novnc-0:0.5.1-2.el6ost.noarch"
        },
        "product_reference": "novnc-0:0.5.1-2.el6ost.noarch",
        "relates_to_product_reference": "6Server-RHOS-4.0"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "novnc-0:0.5.1-2.el6ost.src as a component of Red Hat Enterprise Linux OpenStack Platform 4.0",
          "product_id": "6Server-RHOS-4.0:novnc-0:0.5.1-2.el6ost.src"
        },
        "product_reference": "novnc-0:0.5.1-2.el6ost.src",
        "relates_to_product_reference": "6Server-RHOS-4.0"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2013-7436",
      "cwe": {
        "id": "CWE-319",
        "name": "Cleartext Transmission of Sensitive Information"
      },
      "discovery_date": "2015-02-17T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1193451"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "It was discovered that noVNC did not properly set the \u0027secure\u0027 flag when issuing cookies. An attacker could use this flaw to intercept cookies via a man-in-the-middle attack.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "novnc: session hijack through insecurely set session token cookies",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-RHOS-4.0:novnc-0:0.5.1-2.el6ost.noarch",
          "6Server-RHOS-4.0:novnc-0:0.5.1-2.el6ost.src"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2013-7436"
        },
        {
          "category": "external",
          "summary": "RHBZ#1193451",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1193451"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2013-7436",
          "url": "https://www.cve.org/CVERecord?id=CVE-2013-7436"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-7436",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-7436"
        }
      ],
      "release_date": "2013-10-28T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2015-04-23T13:04:07+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "6Server-RHOS-4.0:novnc-0:0.5.1-2.el6ost.noarch",
            "6Server-RHOS-4.0:novnc-0:0.5.1-2.el6ost.src"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2015:0884"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 6.8,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "products": [
            "6Server-RHOS-4.0:novnc-0:0.5.1-2.el6ost.noarch",
            "6Server-RHOS-4.0:novnc-0:0.5.1-2.el6ost.src"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "novnc: session hijack through insecurely set session token cookies"
    }
  ]
}

RHSA-2015_0834

Vulnerability from csaf_redhat - Published: 2015-04-16 13:53 - Updated: 2024-11-22 09:02

Summary

Red Hat Security Advisory: novnc security update

Notes

Topic

Details

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An updated novnc package that fixes one security issue is now available for\nRed Hat Enterprise Linux OpenStack Platform 5.0 for Red Hat Enterprise\nLinux 7.\n\nRed Hat Product Security has rated this update as having Moderate security\nimpact. A Common Vulnerability Scoring System (CVSS) base score, which\ngives a detailed severity rating, is available from the CVE link in the\nReferences section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "The novnc package provides a VNC client that uses HTML5 (Web Sockets,\nCanvas) and includes encryption support.\n\nIt was discovered that noVNC did not properly set the \u0027secure\u0027 flag when\nissuing cookies. An attacker could use this flaw to intercept cookies via a\nman-in-the-middle attack. (CVE-2013-7436)\n\nAll novnc users are advised to upgrade to this updated package, which\ncorrects this issue.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2015:0834",
        "url": "https://access.redhat.com/errata/RHSA-2015:0834"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#moderate",
        "url": "https://access.redhat.com/security/updates/classification/#moderate"
      },
      {
        "category": "external",
        "summary": "1193451",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1193451"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2015/rhsa-2015_0834.json"
      }
    ],
    "title": "Red Hat Security Advisory: novnc security update",
    "tracking": {
      "current_release_date": "2024-11-22T09:02:25+00:00",
      "generator": {
        "date": "2024-11-22T09:02:25+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.2.1"
        }
      },
      "id": "RHSA-2015:0834",
      "initial_release_date": "2015-04-16T13:53:00+00:00",
      "revision_history": [
        {
          "date": "2015-04-16T13:53:00+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2015-04-16T13:53:00+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2024-11-22T09:02:25+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7",
                "product": {
                  "name": "Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7",
                  "product_id": "7Server-RH7-RHOS-5.0",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openstack:5::el7"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat OpenStack Platform"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "novnc-0:0.5.1-2.el7ost.src",
                "product": {
                  "name": "novnc-0:0.5.1-2.el7ost.src",
                  "product_id": "novnc-0:0.5.1-2.el7ost.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/novnc@0.5.1-2.el7ost?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "novnc-0:0.5.1-2.el7ost.noarch",
                "product": {
                  "name": "novnc-0:0.5.1-2.el7ost.noarch",
                  "product_id": "novnc-0:0.5.1-2.el7ost.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/novnc@0.5.1-2.el7ost?arch=noarch"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "novnc-0:0.5.1-2.el7ost.noarch as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7",
          "product_id": "7Server-RH7-RHOS-5.0:novnc-0:0.5.1-2.el7ost.noarch"
        },
        "product_reference": "novnc-0:0.5.1-2.el7ost.noarch",
        "relates_to_product_reference": "7Server-RH7-RHOS-5.0"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "novnc-0:0.5.1-2.el7ost.src as a component of Red Hat Enterprise Linux OpenStack Platform 5.0 (Icehouse) for RHEL 7",
          "product_id": "7Server-RH7-RHOS-5.0:novnc-0:0.5.1-2.el7ost.src"
        },
        "product_reference": "novnc-0:0.5.1-2.el7ost.src",
        "relates_to_product_reference": "7Server-RH7-RHOS-5.0"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2013-7436",
      "cwe": {
        "id": "CWE-319",
        "name": "Cleartext Transmission of Sensitive Information"
      },
      "discovery_date": "2015-02-17T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1193451"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "It was discovered that noVNC did not properly set the \u0027secure\u0027 flag when issuing cookies. An attacker could use this flaw to intercept cookies via a man-in-the-middle attack.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "novnc: session hijack through insecurely set session token cookies",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-RH7-RHOS-5.0:novnc-0:0.5.1-2.el7ost.noarch",
          "7Server-RH7-RHOS-5.0:novnc-0:0.5.1-2.el7ost.src"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2013-7436"
        },
        {
          "category": "external",
          "summary": "RHBZ#1193451",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1193451"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2013-7436",
          "url": "https://www.cve.org/CVERecord?id=CVE-2013-7436"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-7436",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-7436"
        }
      ],
      "release_date": "2013-10-28T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2015-04-16T13:53:00+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "7Server-RH7-RHOS-5.0:novnc-0:0.5.1-2.el7ost.noarch",
            "7Server-RH7-RHOS-5.0:novnc-0:0.5.1-2.el7ost.src"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2015:0834"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 6.8,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "products": [
            "7Server-RH7-RHOS-5.0:novnc-0:0.5.1-2.el7ost.noarch",
            "7Server-RH7-RHOS-5.0:novnc-0:0.5.1-2.el7ost.src"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "novnc: session hijack through insecurely set session token cookies"
    }
  ]
}

GHSA-85JR-WQ3P-GGCQ

Vulnerability from github – Published: 2022-05-17 04:13 – Updated: 2022-05-17 04:13

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2013-7436"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2015-04-10T14:59:00Z",
    "severity": "MODERATE"
  },
  "details": "noVNC before 0.5 does not set the secure flag for a cookie in an https session, which makes it easier for remote attackers to capture this cookie by intercepting its transmission within an http session.",
  "id": "GHSA-85jr-wq3p-ggcq",
  "modified": "2022-05-17T04:13:39Z",
  "published": "2022-05-17T04:13:39Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-7436"
    },
    {
      "type": "WEB",
      "url": "https://github.com/kanaka/noVNC/commit/ad941faddead705cd611921730054767a0b32dcd"
    },
    {
      "type": "WEB",
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1193451"
    },
    {
      "type": "WEB",
      "url": "http://rhn.redhat.com/errata/RHSA-2015-0788.html"
    },
    {
      "type": "WEB",
      "url": "http://rhn.redhat.com/errata/RHSA-2015-0833.html"
    },
    {
      "type": "WEB",
      "url": "http://rhn.redhat.com/errata/RHSA-2015-0834.html"
    },
    {
      "type": "WEB",
      "url": "http://rhn.redhat.com/errata/RHSA-2015-0884.html"
    },
    {
      "type": "WEB",
      "url": "http://www.openwall.com/lists/oss-security/2015/02/17/1"
    },
    {
      "type": "WEB",
      "url": "http://www.openwall.com/lists/oss-security/2015/03/12/13"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

CNVD-2015-01322

Vulnerability from cnvd - Published: 2015-02-28

Title

noVNC 'include/webutil.js'会话劫持漏洞

Description

NOVNC是个VNC客户端,采用HTML 5 WebSockets、Canvas和JavaScript技术。 noVNC 'include/webutil.js'存在会话劫持漏洞，允许攻击者利用漏洞未授权访问应用。

Severity

中

Patch Name

noVNC 'include/webutil.js'会话劫持漏洞的补丁

Patch Description

NOVNC是个VNC客户端,采用HTML 5 WebSockets、Canvas和JavaScript技术。noVNC 'include/webutil.js'存在会话劫持漏洞，允许攻击者利用漏洞未授权访问应用。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description

用户可参考如下厂商提供的安全补丁以修复该漏洞： https://kanaka.github.io/noVNC/

Reference

http://www.securityfocus.com/bid/72636/

Impacted products

Name
noVNC noVNC

Show details on source website

JSON

To clipboard

{
  "bids": {
    "bid": {
      "bidNumber": "72636"
    }
  },
  "cves": {
    "cve": {
      "cveNumber": "CVE-2013-7436"
    }
  },
  "description": "NOVNC\u662f\u4e2aVNC\u5ba2\u6237\u7aef,\u91c7\u7528HTML 5 WebSockets\u3001Canvas\u548cJavaScript\u6280\u672f\u3002 \r\n\r\nnoVNC \u0027include/webutil.js\u0027\u5b58\u5728\u4f1a\u8bdd\u52ab\u6301\u6f0f\u6d1e\uff0c\u5141\u8bb8\u653b\u51fb\u8005\u5229\u7528\u6f0f\u6d1e\u672a\u6388\u6743\u8bbf\u95ee\u5e94\u7528\u3002",
  "discovererName": "Vasyl Kaigorodov",
  "formalWay": "\u7528\u6237\u53ef\u53c2\u8003\u5982\u4e0b\u5382\u5546\u63d0\u4f9b\u7684\u5b89\u5168\u8865\u4e01\u4ee5\u4fee\u590d\u8be5\u6f0f\u6d1e\uff1a\r\nhttps://kanaka.github.io/noVNC/",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2015-01322",
  "openTime": "2015-02-28",
  "patchDescription": "NOVNC\u662f\u4e2aVNC\u5ba2\u6237\u7aef,\u91c7\u7528HTML 5 WebSockets\u3001Canvas\u548cJavaScript\u6280\u672f\u3002noVNC \u0027include/webutil.js\u0027\u5b58\u5728\u4f1a\u8bdd\u52ab\u6301\u6f0f\u6d1e\uff0c\u5141\u8bb8\u653b\u51fb\u8005\u5229\u7528\u6f0f\u6d1e\u672a\u6388\u6743\u8bbf\u95ee\u5e94\u7528\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "noVNC \u0027include/webutil.js\u0027\u4f1a\u8bdd\u52ab\u6301\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": "noVNC noVNC"
  },
  "referenceLink": "http://www.securityfocus.com/bid/72636/",
  "serverity": "\u4e2d",
  "submitTime": "2015-02-21",
  "title": "noVNC \u0027include/webutil.js\u0027\u4f1a\u8bdd\u52ab\u6301\u6f0f\u6d1e"
}

FKIE_CVE-2013-7436

Vulnerability from fkie_nvd - Published: 2015-04-10 14:59 - Updated: 2025-04-12 10:46

Severity ?

Summary

References

	URL	Tags
	cve@mitre.org	http://rhn.redhat.com/errata/RHSA-2015-0788.html
	cve@mitre.org	http://rhn.redhat.com/errata/RHSA-2015-0833.html
	cve@mitre.org	http://rhn.redhat.com/errata/RHSA-2015-0834.html
	cve@mitre.org	http://rhn.redhat.com/errata/RHSA-2015-0884.html
	cve@mitre.org	http://www.openwall.com/lists/oss-security/2015/02/17/1
	cve@mitre.org	http://www.openwall.com/lists/oss-security/2015/03/12/13
	cve@mitre.org	https://bugzilla.redhat.com/show_bug.cgi?id=1193451
	cve@mitre.org	https://github.com/kanaka/noVNC/commit/ad941faddead705cd611921730054767a0b32dcd
	af854a3a-2127-422b-91ae-364da2661108	http://rhn.redhat.com/errata/RHSA-2015-0788.html
	af854a3a-2127-422b-91ae-364da2661108	http://rhn.redhat.com/errata/RHSA-2015-0833.html
	af854a3a-2127-422b-91ae-364da2661108	http://rhn.redhat.com/errata/RHSA-2015-0834.html
	af854a3a-2127-422b-91ae-364da2661108	http://rhn.redhat.com/errata/RHSA-2015-0884.html
	af854a3a-2127-422b-91ae-364da2661108	http://www.openwall.com/lists/oss-security/2015/02/17/1
	af854a3a-2127-422b-91ae-364da2661108	http://www.openwall.com/lists/oss-security/2015/03/12/13
	af854a3a-2127-422b-91ae-364da2661108	https://bugzilla.redhat.com/show_bug.cgi?id=1193451
	af854a3a-2127-422b-91ae-364da2661108	https://github.com/kanaka/noVNC/commit/ad941faddead705cd611921730054767a0b32dcd

Impacted products

	Vendor	Product	Version
	kanaka	novnc	0.4

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:kanaka:novnc:0.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "4EB3D257-0F54-49E2-B2C9-5B4BE68DA0B2",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "noVNC before 0.5 does not set the secure flag for a cookie in an https session, which makes it easier for remote attackers to capture this cookie by intercepting its transmission within an http session."
    },
    {
      "lang": "es",
      "value": "noVNC anterior a 0.5 no configura la bandera de seguro para una cookie en una sesi\u00f3n https, lo que facilita a atacantes remotos capturar esta cookie mediante la intercepci\u00f3n de su transmisi\u00f3n dentro de una sesi\u00f3n http."
    }
  ],
  "id": "CVE-2013-7436",
  "lastModified": "2025-04-12T10:46:40.837",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "MEDIUM",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "NONE",
          "baseScore": 4.3,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "NONE",
          "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
          "version": "2.0"
        },
        "exploitabilityScore": 8.6,
        "impactScore": 2.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2015-04-10T14:59:00.063",
  "references": [
    {
      "source": "cve@mitre.org",
      "url": "http://rhn.redhat.com/errata/RHSA-2015-0788.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://rhn.redhat.com/errata/RHSA-2015-0833.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://rhn.redhat.com/errata/RHSA-2015-0834.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://rhn.redhat.com/errata/RHSA-2015-0884.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.openwall.com/lists/oss-security/2015/02/17/1"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.openwall.com/lists/oss-security/2015/03/12/13"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1193451"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://github.com/kanaka/noVNC/commit/ad941faddead705cd611921730054767a0b32dcd"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://rhn.redhat.com/errata/RHSA-2015-0788.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://rhn.redhat.com/errata/RHSA-2015-0833.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://rhn.redhat.com/errata/RHSA-2015-0834.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://rhn.redhat.com/errata/RHSA-2015-0884.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.openwall.com/lists/oss-security/2015/02/17/1"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.openwall.com/lists/oss-security/2015/03/12/13"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1193451"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://github.com/kanaka/noVNC/commit/ad941faddead705cd611921730054767a0b32dcd"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-310"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

GSD-2013-7436

Vulnerability from gsd - Updated: 2023-12-13 01:22

Details

Aliases

CVE-2013-7436

Aliases

CVE-2013-7436

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2013-7436",
    "description": "noVNC before 0.5 does not set the secure flag for a cookie in an https session, which makes it easier for remote attackers to capture this cookie by intercepting its transmission within an http session.",
    "id": "GSD-2013-7436",
    "references": [
      "https://www.suse.com/security/cve/CVE-2013-7436.html",
      "https://access.redhat.com/errata/RHSA-2015:0884",
      "https://access.redhat.com/errata/RHSA-2015:0834",
      "https://access.redhat.com/errata/RHSA-2015:0833",
      "https://access.redhat.com/errata/RHSA-2015:0788",
      "https://advisories.mageia.org/CVE-2013-7436.html"
    ]
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2013-7436"
      ],
      "details": "noVNC before 0.5 does not set the secure flag for a cookie in an https session, which makes it easier for remote attackers to capture this cookie by intercepting its transmission within an http session.",
      "id": "GSD-2013-7436",
      "modified": "2023-12-13T01:22:18.440920Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2013-7436",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "noVNC before 0.5 does not set the secure flag for a cookie in an https session, which makes it easier for remote attackers to capture this cookie by intercepting its transmission within an http session."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "[oss-security] 20150217 CVE request: novnc: session hijack through insecurely set session token cookies",
            "refsource": "MLIST",
            "url": "http://www.openwall.com/lists/oss-security/2015/02/17/1"
          },
          {
            "name": "RHSA-2015:0833",
            "refsource": "REDHAT",
            "url": "http://rhn.redhat.com/errata/RHSA-2015-0833.html"
          },
          {
            "name": "RHSA-2015:0884",
            "refsource": "REDHAT",
            "url": "http://rhn.redhat.com/errata/RHSA-2015-0884.html"
          },
          {
            "name": "https://bugzilla.redhat.com/show_bug.cgi?id=1193451",
            "refsource": "CONFIRM",
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1193451"
          },
          {
            "name": "https://github.com/kanaka/noVNC/commit/ad941faddead705cd611921730054767a0b32dcd",
            "refsource": "CONFIRM",
            "url": "https://github.com/kanaka/noVNC/commit/ad941faddead705cd611921730054767a0b32dcd"
          },
          {
            "name": "RHSA-2015:0788",
            "refsource": "REDHAT",
            "url": "http://rhn.redhat.com/errata/RHSA-2015-0788.html"
          },
          {
            "name": "[oss-security] 20150312 CVE request: novnc: session hijack through insecurely set session token cookies",
            "refsource": "MLIST",
            "url": "http://www.openwall.com/lists/oss-security/2015/03/12/13"
          },
          {
            "name": "RHSA-2015:0834",
            "refsource": "REDHAT",
            "url": "http://rhn.redhat.com/errata/RHSA-2015-0834.html"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:kanaka:novnc:0.4:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2013-7436"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "noVNC before 0.5 does not set the secure flag for a cookie in an https session, which makes it easier for remote attackers to capture this cookie by intercepting its transmission within an http session."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-310"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://github.com/kanaka/noVNC/commit/ad941faddead705cd611921730054767a0b32dcd",
              "refsource": "CONFIRM",
              "tags": [],
              "url": "https://github.com/kanaka/noVNC/commit/ad941faddead705cd611921730054767a0b32dcd"
            },
            {
              "name": "https://bugzilla.redhat.com/show_bug.cgi?id=1193451",
              "refsource": "CONFIRM",
              "tags": [],
              "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1193451"
            },
            {
              "name": "[oss-security] 20150312 CVE request: novnc: session hijack through insecurely set session token cookies",
              "refsource": "MLIST",
              "tags": [],
              "url": "http://www.openwall.com/lists/oss-security/2015/03/12/13"
            },
            {
              "name": "[oss-security] 20150217 CVE request: novnc: session hijack through insecurely set session token cookies",
              "refsource": "MLIST",
              "tags": [],
              "url": "http://www.openwall.com/lists/oss-security/2015/02/17/1"
            },
            {
              "name": "RHSA-2015:0788",
              "refsource": "REDHAT",
              "tags": [],
              "url": "http://rhn.redhat.com/errata/RHSA-2015-0788.html"
            },
            {
              "name": "RHSA-2015:0834",
              "refsource": "REDHAT",
              "tags": [],
              "url": "http://rhn.redhat.com/errata/RHSA-2015-0834.html"
            },
            {
              "name": "RHSA-2015:0833",
              "refsource": "REDHAT",
              "tags": [],
              "url": "http://rhn.redhat.com/errata/RHSA-2015-0833.html"
            },
            {
              "name": "RHSA-2015:0884",
              "refsource": "REDHAT",
              "tags": [],
              "url": "http://rhn.redhat.com/errata/RHSA-2015-0884.html"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "NONE",
            "baseScore": 4.3,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "NONE",
            "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
            "version": "2.0"
          },
          "exploitabilityScore": 8.6,
          "impactScore": 2.9,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "MEDIUM",
          "userInteractionRequired": false
        }
      },
      "lastModifiedDate": "2015-05-06T01:59Z",
      "publishedDate": "2015-04-10T14:59Z"
    }
  }
}

SUSE-SU-2015:1300-1

Vulnerability from csaf_suse - Published: 2015-06-10 07:30 - Updated: 2015-06-10 07:30

Summary

Security update for novnc

Notes

Title of the patch

Security update for novnc

Description of the patch

novnc was updated to fix a session hijacking problem through insecurely set session token cookies (bnc#922233, CVE-2013-7436). Security Issues: * CVE-2013-7436 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7436>

Patchnames

sleclo50sp3-novnc

CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for novnc",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "\nnovnc was updated to fix a session hijacking problem through insecurely set \nsession token cookies (bnc#922233, CVE-2013-7436).\n\nSecurity Issues:\n\n    * CVE-2013-7436\n      \u003chttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7436\u003e\n\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "sleclo50sp3-novnc",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2015_1300-1.json"
      },
      {
        "category": "self",
        "summary": "URL for SUSE-SU-2015:1300-1",
        "url": "https://www.suse.com/support/update/announcement/2015/suse-su-20151300-1/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for SUSE-SU-2015:1300-1",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2015-July/001510.html"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 922233",
        "url": "https://bugzilla.suse.com/922233"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2013-7436 page",
        "url": "https://www.suse.com/security/cve/CVE-2013-7436/"
      }
    ],
    "title": "Security update for novnc",
    "tracking": {
      "current_release_date": "2015-06-10T07:30:30Z",
      "generator": {
        "date": "2015-06-10T07:30:30Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "SUSE-SU-2015:1300-1",
      "initial_release_date": "2015-06-10T07:30:30Z",
      "revision_history": [
        {
          "date": "2015-06-10T07:30:30Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "novnc-0.4-0.13.1.x86_64",
                "product": {
                  "name": "novnc-0.4-0.13.1.x86_64",
                  "product_id": "novnc-0.4-0.13.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "SUSE OpenStack Cloud 5",
                "product": {
                  "name": "SUSE OpenStack Cloud 5",
                  "product_id": "SUSE OpenStack Cloud 5",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:cloud:5"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "novnc-0.4-0.13.1.x86_64 as component of SUSE OpenStack Cloud 5",
          "product_id": "SUSE OpenStack Cloud 5:novnc-0.4-0.13.1.x86_64"
        },
        "product_reference": "novnc-0.4-0.13.1.x86_64",
        "relates_to_product_reference": "SUSE OpenStack Cloud 5"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2013-7436",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2013-7436"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "noVNC before 0.5 does not set the secure flag for a cookie in an https session, which makes it easier for remote attackers to capture this cookie by intercepting its transmission within an http session.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE OpenStack Cloud 5:novnc-0.4-0.13.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2013-7436",
          "url": "https://www.suse.com/security/cve/CVE-2013-7436"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 922233 for CVE-2013-7436",
          "url": "https://bugzilla.suse.com/922233"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE OpenStack Cloud 5:novnc-0.4-0.13.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2015-06-10T07:30:30Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2013-7436"
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2013-7436 (GCVE-0-2013-7436)

Tags

Sightings

Nomenclature