CVE-2012-0264

EUVD-2012-0300
op5 Monitor and op5 Appliance before 5.5.0 do not properly manage session cookies, which allows remote attackers to have an unspecified impact via unspecified vectors.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
10 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:C/I:C/A:C
Base Score
CVSS 3.x
EPSS Score
Percentile: 91%
Affected Products (NVD)
VendorProductVersion
op5monitor
𝑥
≤ 5.4.2
op5monitor
5.3.5
op5monitor
5.4.0
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://seclists.org/fulldisclosure/2012/Jan/62
http://secunia.com/advisories/47344
http://www.ekelow.se/file_uploads/Advisories/ekelow-aid-2012-01.pdf
http://www.op5.com/news/support-news/fixed-vulnerabilities-op5-monitor-op5-appliance/
http://www.osvdb.org/78066
https://bugs.op5.com/view.php?id=5094
http://seclists.org/fulldisclosure/2012/Jan/62
http://secunia.com/advisories/47344
http://www.ekelow.se/file_uploads/Advisories/ekelow-aid-2012-01.pdf
http://www.op5.com/news/support-news/fixed-vulnerabilities-op5-monitor-op5-appliance/
http://www.osvdb.org/78066
https://bugs.op5.com/view.php?id=5094