Описание
An Incorrect Implementation of Authentication Algorithm and Exposure of Data Element to Wrong Ses-sion vulnerability in the session handling used in B&R APROL <4.4-00P5 may allow an authenticated network attacker to take over a currently active user session without login credentials.
EPSS
Процентиль: 38%
0.00165
Низкий
Дефекты
CWE-303
Связанные уязвимости
github
11 месяцев назад
An Incorrect Implementation of Authentication Algorithm and Exposure of Data Element to Wrong Ses-sion vulnerability in the session handling used in B&R APROL <4.4-00P5 may allow an authenticated network attacker to take over a currently active user session without login credentials.
EPSS
Процентиль: 38%
0.00165
Низкий
Дефекты
CWE-303