Unknown · Openitcockpit · CVE-2023-3520
**Name of the Vulnerable Software and Affected Versions**
openitcockpit versions prior to 4.6.6
**Description**
The issue concerns a sensitive cookie in an HTTPS session that lacks the 'Secure' attribute. This could potentially allow unauthorized access to sensitive information.
**Recommendations**
For versions prior to 4.6.6, update to version 4.6.6 or later to resolve the issue.