CVE-2015-1555

Опубликовано: 07 авг. 2017

Источник: ubuntu

Приоритет: medium

CVSS2: 6.4

CVSS3: 9.1

Описание

Zend/Session/SessionManager in Zend Framework 2.2.x before 2.2.9, 2.3.x before 2.3.4 allows remote attackers to create valid sessions without using session validators.

Релиз	Статус	Примечание
artful	DNE
bionic	DNE
devel	DNE
esm-apps/xenial	not-affected	code not present
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was not-affected [code not present]]
precise/esm	DNE
trusty	not-affected	code not present
trusty/esm	DNE	trusty was not-affected [code not present]
upstream	released	2.2.9
vivid/ubuntu-core	DNE

Показывать по

Релиз	Статус	Примечание
artful	ignored	end of life
bionic	not-affected	code not present
devel	not-affected	code not present
esm-apps/bionic	not-affected	code not present
esm-infra-legacy/trusty	DNE
precise/esm	DNE
trusty	DNE
trusty/esm	DNE
upstream	released	2.2.9
vivid/ubuntu-core	DNE

Показывать по

Ссылки на источники

6.4 Medium

CVSS2

9.1 Critical

CVSS3

Связанные уязвимости

CVE-2015-1555

CVSS3: 9.1

nvd

больше 8 лет назад

Zend/Session/SessionManager in Zend Framework 2.2.x before 2.2.9, 2.3.x before 2.3.4 allows remote attackers to create valid sessions without using session validators.

CVE-2015-1555

CVSS3: 9.1

debian

больше 8 лет назад

Zend/Session/SessionManager in Zend Framework 2.2.x before 2.2.9, 2.3. ...

GHSA-89c6-rprr-qfr3

CVSS3: 9.1

github

больше 3 лет назад

Zend/Session/SessionManager in Zend Framework 2.2.x before 2.2.9, 2.3.x before 2.3.4 allows remote attackers to create valid sessions without using session validators.

6.4 Medium

CVSS2

9.1 Critical

CVSS3

CVE-2015-1555

Описание

Пакет zend-framework

Пакет zendframework

Ссылки на источники

Связанные уязвимости