Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
988
Views
1
Helpful
4
Replies

CSCvt31126 - ENH allow http-only-cookie for web connection

lnguyen@meriwest.com
Level 1
Level 1

‎11-19-2020 12:03 PM - edited ‎11-19-2020 12:03 PM

anybody else have this issue or know the patch from Cisco? i have not see anything from Cisco for this bug.

 

thanks

7 people had this problem
Labels:
0 Helpful
4 Replies 4

ttran32
Level 1
Level 1

‎12-12-2023 07:08 AM

Internal vulnerability scanner picked up this vulnerability and have been looking for a resolution as well. 

0 Helpful

Aomar bahloul
Spotlight
Spotlight

‎01-23-2024 10:20 AM

This issue has been carried over from the ASAs, Cisco Bug: CSCvt31126 - ENH: allow http-only-cookie for web connection

On the ASA they had a fix for it but apparently no workaround for the FTDs. Also, the severity was lowered from 2 Severe to 6 Enhancement go figure! I opened a TAC case for it even thought I doubt they will have a fix. 

Vicente Miño
Level 1
Level 1
In response to Aomar bahloul

‎02-19-2024 10:33 AM

Hey Aomar, Did you receive any response from Cisco? I am having a similar problem like this case.

0 Helpful

Aomar bahloul
Spotlight
Spotlight
In response to Vicente Miño

‎03-25-2024 12:43 PM

Yes, with the FTDs you need to use FlexConfig, first you need to create a Flex Object than attach it to the device FlexConfig Policy here is how the object looks like: 

FlexObjectJPG.JPG

 

0 Helpful
Customers Also Viewed These Support Documents