Skip to main content

Stratos

2 CVEs product

Monthly

CVE-2019-3784 MEDIUM This Month

Cloud Foundry Stratos, versions prior to 2.3.0, contains an insecure session that can be spoofed. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Session Fixation Information Disclosure Stratos
NVD
CVSS 3.0
6.5
EPSS
1.1%
CVE-2019-3783 HIGH This Week

Cloud Foundry Stratos, versions prior to 2.3.0, deploys with a public default session store secret. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Session Fixation Information Disclosure Stratos
NVD
CVSS 3.1
8.8
EPSS
0.9%
EPSS 1% CVSS 6.5
MEDIUM This Month

Cloud Foundry Stratos, versions prior to 2.3.0, contains an insecure session that can be spoofed. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Session Fixation Information Disclosure Stratos
NVD
EPSS 1% CVSS 8.8
HIGH This Week

Cloud Foundry Stratos, versions prior to 2.3.0, deploys with a public default session store secret. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Session Fixation Information Disclosure Stratos
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy