Опубликовано: 05 нояб. 2019
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 9.4
CVSS3: 6.5
Описание
TYPO3 before 4.1.14, 4.2.x before 4.2.13, 4.3.x before 4.3.4 and 4.4.x before 4.4.1 is open to a session fixation attack which allows remote attackers to hijack a victim's session.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | |
| hardy | ignored | end of life |
| lucid | ignored | end of life |
| maverick | ignored | end of life |
| natty | not-affected | 4.3.9+dfsg1-1+squeeze1build0.11.04.1 |
| oneiric | not-affected | |
| precise | not-affected | |
| quantal | not-affected | |
| raring | not-affected | |
| saucy | not-affected |
Показывать по
10
Ссылки на источники
EPSS
Процентиль: 75%
0.00905
Низкий
9.4 Critical
CVSS2
6.5 Medium
CVSS3
Связанные уязвимости
CVSS3: 6.5
nvd
больше 6 лет назад
TYPO3 before 4.1.14, 4.2.x before 4.2.13, 4.3.x before 4.3.4 and 4.4.x before 4.4.1 is open to a session fixation attack which allows remote attackers to hijack a victim's session.
CVSS3: 6.5
debian
больше 6 лет назад
TYPO3 before 4.1.14, 4.2.x before 4.2.13, 4.3.x before 4.3.4 and 4.4.x ...
EPSS
Процентиль: 75%
0.00905
Низкий
9.4 Critical
CVSS2
6.5 Medium
CVSS3