CVE-2014-3909

Session fixation vulnerability in Falcon WisePoint 4.1.19.7 and earlier allows remote attackers to hijack web sessions via unspecified vectors.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 6

NVD 21 VulnDex Vulnerability Enrichment 0

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Falconsc ≫ Wisepoint Version <= 4.1.19.7

Falconsc ≫ Wisepoint Version3.6.7

Falconsc ≫ Wisepoint Version3.6.8

Falconsc ≫ Wisepoint Version3.6.10

Falconsc ≫ Wisepoint Version3.6.11

Falconsc ≫ Wisepoint Version3.6.13

Falconsc ≫ Wisepoint Version3.6.15

Falconsc ≫ Wisepoint Version3.7.0

Falconsc ≫ Wisepoint Version3.7.1

Falconsc ≫ Wisepoint Version3.7.2

Falconsc ≫ Wisepoint Version3.7.3

Falconsc ≫ Wisepoint Version4.1.0

Falconsc ≫ Wisepoint Version4.1.10

Falconsc ≫ Wisepoint Version4.1.13

Falconsc ≫ Wisepoint Version4.1.17

Falconsc ≫ Wisepoint Version4.1.18

Falconsc ≫ Wisepoint Version4.1.19

Falconsc ≫ Wisepoint Version4.1.19.1

Falconsc ≫ Wisepoint Version4.1.19.2

Falconsc ≫ Wisepoint Version4.1.19.4

Falconsc ≫ Wisepoint Version4.1.19.6

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	1.3%	0.666

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	6.8	8.6	6.4	AV:N/AC:M/Au:N/C:P/I:P/A:P

Es wurden noch keine Informationen zu CWE veröffentlicht.

http://jvn.jp/en/jp/JVN49672671/index.html

Patch

http://jvndb.jvn.jp/jvndb/JVNDB-2014-000084

https://service.falconsc.com/service/product/patch/index.html

Patch

CVE Source (NVD)

CVE Source (JSON)

EUVD

Team-orientierte Vulnerability Management Plattform