CVE-2017-14332

Published: Oct 23, 2017Modified: May 13, 2026

8.1

Vector

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 2.2 / Impact: 5.9

Source: NVD

Description

Extreme EXOS 15.7, 16.x, 21.x, and 22.x allows remote attackers to hijack sessions by determining SessionID values.

Products: Extremenetworks: Extremexos

1 product

Configuration A

17 vulnerable

Vulnerable Software	Affected Versions
Extremenetworks Extremexos	Version 15.7
Extremenetworks Extremexos	Version 16.1.2
Extremenetworks Extremexos	Version 16.1.3
Extremenetworks Extremexos	Version 16.1.4
Extremenetworks Extremexos	Version 16.2.2
Extremenetworks Extremexos	Version 16.2.3
Extremenetworks Extremexos	Version 16.2.4
Extremenetworks Extremexos	Version 16.2
Extremenetworks Extremexos	Version 21.1.1
Extremenetworks Extremexos	Version 21.1.2
Extremenetworks Extremexos	Version 21.1.3
Extremenetworks Extremexos	Version 21.1.4
Extremenetworks Extremexos	Version 21.1
Extremenetworks Extremexos	Version 22.1
Extremenetworks Extremexos	Version 22.2
Extremenetworks Extremexos	Version 22.3
Extremenetworks Extremexos	Version 22.4

Source: cve@mitre.org

MitigationVendor Advisory

Source: af854a3a-2127-422b-91ae-364da2661108

MitigationVendor Advisory

No history available yet.