Session fixation

2023-10-2620:15:00

PRIOn knowledge base

www.prio-n.com

sielco polyeco1000

session hijack

cookie vulnerability

brute force attack

ssl

visible session

9.3 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

39.3%

JSON

Sielco PolyEco1000 is vulnerable to a session hijack vulnerability due to the cookie being vulnerable to a brute force attack, lack of SSL, and the session being visible in requests.

References

www.cisa.gov/news-events/ics-advisories/icsa-23-299-07