CVE-2015-0201

Опубликовано: 10 мар. 2015

Источник: debian

EPSS Низкий

Описание

The Java SockJS client in Pivotal Spring Framework 4.1.x before 4.1.5 generates predictable session ids, which allows remote attackers to send messages to other sessions via unspecified vectors.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
libspring-java	not-affected			package

EPSS

Процентиль: 52%

0.00293

Низкий

Связанные уязвимости

CVE-2015-0201

redhat

больше 10 лет назад

The Java SockJS client in Pivotal Spring Framework 4.1.x before 4.1.5 generates predictable session ids, which allows remote attackers to send messages to other sessions via unspecified vectors.

CVE-2015-0201

nvd

больше 10 лет назад

The Java SockJS client in Pivotal Spring Framework 4.1.x before 4.1.5 generates predictable session ids, which allows remote attackers to send messages to other sessions via unspecified vectors.

GHSA-45vg-2v73-vm62

github

почти 7 лет назад

Moderate severity vulnerability that affects org.springframework:spring-core

EPSS

Процентиль: 52%

0.00293

Низкий