Security Analytics and CWE-565: Cookies Issued Without User Consent

search cancel

Security Analytics and CWE-565: Cookies Issued Without User Consent

book

Article ID: 403891

calendar_today

Updated On:

Products

Security Analytics

Issue/Introduction

Is Security Analytics vulnerable CWE-565 — Cookies Issued Without User Consent?

Resolution

Security Analytics is not vulnerable to CWE-565 — Cookies Issued Without User Consent.

No cookies are collected except for a single required cookie that stores a unique session ID for each user session. No personally identifiable information (PII) such as usernames, personal identification numbers, or other sensitive data is stored in cookies.

The session ID is unique to each login session and is refreshed every time a user logs in. Only this necessary session identifier is issued to maintain secure user access.

Feedback

thumb_up Yes

thumb_down No