Support Us — Your donation helps us keep running

Goal: 1000 CNY,Raised: 1000 CNY

100.0%
Donate Now

CWE-384 (会话固定) — Vulnerability Class 145

145 vulnerabilities classified as CWE-384 (会话固定). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPaused
CVE-2019-18946 Session fixation — Solutions Business Manager 4.8 Medium2021-02-26
CVE-2020-25198 MOXA NPort IAW5000A-I/O Series — NPort IAW5000A-I/O 8.8 High2020-12-23
CVE-2020-10714 Red Hat WildFly Elytron 授权问题漏洞 — wildfly-elytron 9.8 -2020-09-23
CVE-2020-6302 SAP Commerce 安全漏洞 — SAP Commerce 8.1 -2020-09-09
CVE-2020-1993 PAN-OS: GlobalProtect Portal PHP session fixation vulnerability — PAN-OS 3.7 Low2020-05-13
CVE-2020-5290 session fixation in rCTF — rctf 6.5 Medium2020-04-01
CVE-2019-15612 Nextcloud Server 授权问题漏洞 — Nextcloud Server 8.1 -2020-02-04
CVE-2020-5205 Session fixation attack in Pow (Hex package) — Pow 6.5 Medium2020-01-09
CVE-2019-10158 Red Hat Infinispan 授权问题漏洞 — infinispan 9.4 -2020-01-02
CVE-2019-0062 Junos OS: Session fixation vulnerability in J-Web — Junos OS 7.5 High2019-10-09
CVE-2019-13517 BD Pyxis 授权问题漏洞 — BD 8.8 -2019-09-06
CVE-2019-6584 Siemens LOGO!8 代码问题漏洞 — SIEMENS LOGO!8 8.8 -2019-06-12
CVE-2019-1807 Cisco Umbrella Dashboard Session Management Vulnerability — Cisco Umbrella 8.3 -2019-05-03
CVE-2019-3783 Cloud Foundry Stratos Deploys With Public Default Session Store Secret — Stratos 8.8 -2019-03-07
CVE-2019-3784 Cloud Foundry Stratos contains a Session Collision Vulnerability — Stratos 8.1 -2019-03-07
CVE-2018-13282 Synology Photo Station 安全漏洞 — Photo Station 7.6 -2018-10-31
CVE-2018-16463 Nextcloud Server 安全漏洞 — Nextcloud Server 5.4 -2018-10-30
CVE-2018-17902 多款Yokogawa产品安全漏洞 — STARDOM Controllers FCJ,FCN-100,FCN-RTU, FCN-500 7.5 -2018-10-12
CVE-2018-8852 Philips e-Alert 安全漏洞 — e-Alert Unit (non-medical device) 8.8 -2018-09-26
CVE-2016-8609 Red Hat keycloak 授权问题漏洞 — keycloak 8.8 -2018-08-01
CVE-2018-5385 Navarino Infinity web interface up to version 2.2 is prone to session fixation attacks — Infinity 8.8 -2018-07-24
CVE-2018-0359 Cisco Meeting Server 安全漏洞 — Cisco Meeting Server unknown 4.0 -2018-06-21
CVE-2018-0229 多款Cisco产品AnyConnect Secure Mobility Client、Adaptive Security ApplianceSoftware和Firepower Threat Defense Software 安全漏洞 — Cisco ASA Software, FTD Software, and AnyConnect Secure Mobility Client 8.1 -2018-04-19
CVE-2018-5465 多款Belden产品安全漏洞 — Hirschmann Automation and Control GmbH Classic Platform Switches 8.8 -2018-03-06
CVE-2016-9125 Revive Adserver 安全漏洞 — Revive Adserver All versions before 3.2.3 9.8 -2017-03-28

Vulnerabilities classified as CWE-384 (会话固定) represent 145 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.