Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
veracodeVeracode Vulnerability DatabaseVERACODE:32312
HistorySep 30, 2021 - 5:58 a.m.

Session Fixation

2021-09-3005:58:34
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
12
session fixation
zoneminder:edge
software vulnerability
hijacking accounts

EPSS

0.001

Percentile

35.0%

JSON

zoneminder:edge is vulnerable to session fixation.As an attacker can fixate his own session cookies to the next logged-in user, thereby hijacking the victim’s account. This occurs because a set of multiple cookies (between 3 and 5) is being generated when a user successfully logs in, and these sets overlap for successive logins.

Related

prion 1
alpinelinux 1
ubuntucve 1
osv 1
cvelist 1
cve 1
nvd 1
debiancve 1
openvas 1
prion
prion
Session fixation
2019-02-04 19:29:00
alpinelinux
alpinelinux
CVE-2019-7350
2019-02-04 19:29:01
ubuntucve
ubuntucve
CVE-2019-7350
2019-02-04 00:00:00
osv
osv
CVE-2019-7350
2019-02-04 19:29:01
cvelist
cvelist
CVE-2019-7350
2019-02-04 19:00:00
cve
cve
CVE-2019-7350
2019-02-04 19:29:01
nvd
nvd
CVE-2019-7350
2019-02-04 19:29:01
debiancve
debiancve
CVE-2019-7350
2019-02-04 19:29:01
openvas
openvas
ZoneMinder < 1.34.0 Multiple Vulnerabilities
2019-02-05 00:00:00

EPSS

0.001

Percentile

35.0%

JSON
Related for VERACODE:32312
prion1alpinelinux1ubuntucve1osv1cvelist1cve1nvd1debiancve1openvas1