Security Advisory

CVE-2019-3783

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-03-07 19:00:00

Last updated 2024-09-16 23:15:59

Assigner dell

State PUBLISHED

Description

Cloud Foundry Stratos, versions prior to 2.3.0, deploys with a public default session store secret. A malicious user with default session store secret can brute force another users current Stratos session, and act on behalf of that user.

← Browse all CVEs View on cve.org ↗