CVE-2015-0544 in Secure Remote Services Virtual Editioninfo

Summary

EMC Secure Remote Services Virtual Edition (ESRS VE) 3.x before 3.06 does not properly generate random values for session cookies, which makes it easier for remote attackers to hijack sessions by predicting a value.

Be aware that VulDB is the high quality source for vulnerability data.

Reservation

12/17/2014

Disclosure

07/05/2015

Moderation

VulDB entry created

Entries

1: VDB-76272

CPE

ready

CWE

CWE-331 (Confirmed)

CVSS

7.3

EPSS

0.00827

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2015-0544
NVD	https://nvd.nist.gov/vuln/detail/CVE-2015-0544
CVE Details	https://www.cvedetails.com/cve/CVE-2015-0544/

◂ Previous Overview Next ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!