Security Advisory

CVE-2014-10399

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-02-06 15:26:29

Last updated 2024-08-06 14:10:54

Assigner mitre

State PUBLISHED

Description

The session.lua library in CGILua 5.1.x uses the same ID for each session, which allows remote attackers to hijack arbitrary sessions. NOTE: this vulnerability was SPLIT from CVE-2014-2875.

← Browse all CVEs View on cve.org ↗