SATAN Security Scanner 1.0/1.1 Session Key improper authentication

entryeditHistoryDiffjsonxmlCTI

A vulnerability, which was classified as critical, was found in SATAN Security Scanner 1.0/1.1 (Security Testing Software). This affects some unknown functionality of the component Session Key Handler. Upgrading eliminates this vulnerability.

Timeline

The analysis of the timeline helps to identify the required approach and handling of single vulnerabilities and vulnerability collections. This overview makes it possible to see less important slices and more severe hotspots at a glance. Initiating immediate vulnerability response and prioritizing of issues is possible.

User

Field

Commit Conf

Approve Conf

IDCommitedUserFieldChangeRemarksModeratedReasonC
107404904/03/2019VulD...cwe287 (weak authentication)04/03/2019accepted90
107404804/03/2019VulD...cve_nvd_summarythe satan session key may be disclosed if the user points the web browser to other sites possibly allowing root access.mitre.org04/03/2019accepted100
107404704/03/2019VulD...cve_nvd_published796867200mitre.org04/03/2019accepted100
107403704/03/2019VulD...cvss2_nvd_aiCnist.gov04/03/2019accepted100
107403604/03/2019VulD...cvss2_nvd_iiCnist.gov04/03/2019accepted100
107403504/03/2019VulD...cvss2_nvd_ciCnist.gov04/03/2019accepted100
107403404/03/2019VulD...cvss2_nvd_auNnist.gov04/03/2019accepted100
107403304/03/2019VulD...cvss2_nvd_acHnist.gov04/03/2019accepted100
107403204/03/2019VulD...cvss2_nvd_avNnist.gov04/03/2019accepted100
107401704/03/2019VulD...typeSecurity Testing Software04/03/2019accepted100
107406306/17/2014VulD...cvss3_vuldb_aH06/17/2014accepted60
107406206/17/2014VulD...cvss3_vuldb_iH06/17/2014accepted60
107406106/17/2014VulD...cvss3_vuldb_cH06/17/2014accepted60
107406006/17/2014VulD...cvss3_vuldb_sU06/17/2014accepted60
107405906/17/2014VulD...cvss3_vuldb_uiN06/17/2014accepted60
107405806/17/2014VulD...cvss3_vuldb_prN06/17/2014accepted60
107405706/17/2014VulD...cvss3_vuldb_acH06/17/2014accepted60
107405606/17/2014VulD...cvss3_vuldb_avN06/17/2014accepted60
107405506/17/2014VulD...cvss3_vuldb_rcX06/17/2014accepted90
107405406/17/2014VulD...cvss3_vuldb_rlO06/17/2014accepted90

Interested in the pricing of exploits?

See the underground prices here!