exploitDog

GHSA-5x2h-h4hh-q668

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

Trend Micro Threat Discovery Appliance 2.6.1062r1 and earlier uses predictable session values, which allows remote attackers to bypass authentication by guessing the value.

Trend Micro Threat Discovery Appliance 2.6.1062r1 and earlier uses predictable session values, which allows remote attackers to bypass authentication by guessing the value.

Ссылки

EPSS

Процентиль: 88%

0.04082

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-284

Связанные уязвимости

CVE-2016-8584

CVSS3: 9.8

nvd

почти 9 лет назад

Trend Micro Threat Discovery Appliance 2.6.1062r1 and earlier uses predictable session values, which allows remote attackers to bypass authentication by guessing the value.

EPSS

Процентиль: 88%

0.04082

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-284