CVE-2015-6845

2015-10-18T14:59:00
ID CVE-2015-6845
Type cve
Reporter cve@mitre.org
Modified 2016-12-08T16:13:00

Description

EMC SourceOne Email Supervisor before 7.2 does not properly employ random values for session IDs, which makes it easier for remote attackers to obtain access by guessing an ID. <a href="https://cwe.mitre.org/data/definitions/331.html">CWE-331: Insufficient Entropy</a>