Lucene search
Redhat.comRH:CVE-2017-6807HistoryMar 13, 2017 - 3:18 p.m.
CVE-2017-6807
2017-03-1315:18:11
redhat.com
access.redhat.com
10
0.001 Low
EPSS
Percentile
35.8%
It was found that mod_auth_mellon was vulnerable to a cross-site session transfer attack. An attacker with access to one web site on a server could use the same session to get access to a different site running on the same server.
Related
cve
cve
CVE-2017-6807
2017-03-13 14:59:00
nessus
nessus
Amazon Linux AMI : mod_auth_mellon / mod24_auth_mellon (ALAS-2018-968)
2018-03-09 00:00:00
EulerOS 2.0 SP3 : mod_auth_mellon (EulerOS-SA-2019-2632)
2019-12-18 00:00:00
EulerOS 2.0 SP2 : mod_auth_mellon (EulerOS-SA-2019-2388)
2019-12-10 00:00:00
veracode
veracode
Cross-site Session Transfer
2020-10-25 12:38:27
prion
prion
Cross site scripting
2017-03-13 14:59:00
osv
osv
CVE-2017-6807
2017-03-13 14:59:00
libapache2-mod-auth-mellon vulnerabilities
2020-10-22 12:47:17
nvd
nvd
CVE-2017-6807
2017-03-13 14:59:00
openvas
openvas
Huawei EulerOS: Security Advisory for mod_auth_mellon (EulerOS-SA-2019-2632)
2020-01-23 00:00:00
Ubuntu: Security Advisory (USN-4597-1)
2020-10-23 00:00:00
Huawei EulerOS: Security Advisory for mod_auth_mellon (EulerOS-SA-2019-2388)
2020-01-23 00:00:00
amazon
amazon
Medium: mod_auth_mellon, mod24_auth_mellon
2018-03-07 21:37:00
cvelist
cvelist
CVE-2017-6807
2017-03-13 14:00:00
debiancve
debiancve
CVE-2017-6807
2017-03-13 14:59:00
ubuntucve
ubuntucve
CVE-2017-6807
2017-03-13 00:00:00
ubuntu
ubuntu
mod_auth_mellon vulnerabilities
2020-10-22 00:00:00