CVE-2016-4896

2017-04-1222:00:00

jpcert

www.cve.org

6.6 Medium

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

65.5%

JSON

SetsucoCMS all versions does not properly manage sessions, which allows remote attackers to disclose or alter unauthorized information via unspecified vectors.

References

jvn.jp/en/jp/JVN80157683/index.html

jvndb.jvn.jp/en/contents/2016/JVNDB-2016-000201.html

www.securityfocus.com/bid/93475