CVE-2017-2589 in hawtio Servletinfo

Zusammenfassung

von MITRE

It was discovered that the hawtio servlet 1.4 uses a single HttpClient instance to proxy requests with a persistent cookie store (cookies are stored locally and are not passed between the client and the end URL) which means all clients using that proxy are sharing the same cookies.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Reservieren

30.11.2016

Veröffentlichung

26.07.2018

Moderieren

akzeptiert

Eintrag

VDB-122203

CPE

bereit

CWE

CWE-254 (bestätigt)

CVSS

9.0 (NVD)

EPSS

0.00166

KEV

nein

Aktivitäten

very low

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2017-2589
NVD	https://nvd.nist.gov/vuln/detail/CVE-2017-2589
CVE Details	https://www.cvedetails.com/cve/CVE-2017-2589/

◂ Zurück Übersicht Weiter ▸

Interested in the pricing of exploits?

See the underground prices here!