CVE-2018-16495

Published: May 26, 2021Modified: Nov 21, 2024

8.8

Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 2.8 / Impact: 5.9

Source: NVD

Description

In VOS user session identifier (authentication token) is issued to the browser prior to authentication but is not changed after the user successfully logs into the application. Failing to issue a new session ID following a successful login introduces the possibility for an attacker to set up a trap session on the device the victim is likely to login with.

Affected (3)

Products: Versa Networks: Versa Operating System

Versa Networks

1 product

Versa Operating System

Configuration A

3 vulnerable

Vulnerable Software	Affected Versions
Versa Networks Versa Operating System	Before 16.1r2s11
Versa Networks Versa Operating System	From 20.2.0 to 20.2.2
Versa Networks Versa Operating System	From 21.1.0 to 21.1.1

Related CWEs

CWE-384

Session Fixation

Authenticating a user, or otherwise establishing a new user session, without invalidating any existing session identifier gives an attacker the opportunity to steal authenticated sessions.

References (2)

https://hackerone.com/reports/1168192

Source: support@hackerone.com

Third Party Advisory

https://hackerone.com/reports/1168192

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

Timeline

No history available yet.