CVE-2017-2589 in hawtio Servletinformação

Sumário

de MITRE

It was discovered that the hawtio servlet 1.4 uses a single HttpClient instance to proxy requests with a persistent cookie store (cookies are stored locally and are not passed between the client and the end URL) which means all clients using that proxy are sharing the same cookies.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Reservar

30/11/2016

Divulgação

26/07/2018

Moderação

aceite

Entrada

VDB-122203

CPE

pronto

CWE

CWE-254 (confirmado)

CVSS

9.0 (NVD)

EPSS

0.00166

KEV

não

Atividades

muito baixo

Fontes

MITRE	https://www.cve.org/CVERecord?id=CVE-2017-2589
NVD	https://nvd.nist.gov/vuln/detail/CVE-2017-2589
CVE Details	https://www.cvedetails.com/cve/CVE-2017-2589/

◂ Voltar Visão Geral Próximo ▸

Interested in the pricing of exploits?

See the underground prices here!