Security Advisory

CVE-2014-10400

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-02-06 15:26:31

Last updated 2024-08-06 14:10:54

Assigner mitre

State PUBLISHED

Description

The session.lua library in CGILua 5.0.x uses sequential session IDs, which makes it easier for remote attackers to predict the session ID and hijack arbitrary sessions. NOTE: this vulnerability was SPLIT from CVE-2014-2875.

← Browse all CVEs View on cve.org ↗