My Oracle Support Banner

Billing Care Issue - Session Cookie Missing Secure Flag (Doc ID 2579167.1)

Last updated on AUGUST 31, 2019

Applies to:

Oracle Communications Billing and Revenue Management - Version and later
Information in this document applies to any platform.


The BC_JSESSIONID cookie is missing the secure flag, which can potentially
allow for man-in-the-middle attacks even if the rest of the application is
served over TLS.

See for reference:

How to resolve this issue?


To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!

In this Document

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.