5 matches found
Authentication flaw
A man-in-the-middle vulnerability in Cohesity DataPlatform support channel in version 6.3 up to 6.3.1g, 6.4 up to 6.4.1c and 6.5.1 through 6.5.1b. Missing server authentication in impacted versions can allow an attacker to Man-in-the-middle MITM support channel UI session to Cohesity DataPlatform...
Security Bulletin: IBM Event Streams could allow a remote attacker to bypass security restrictions by modifying the UI session cookie
Summary IBM Event Streams could allow a remote attacker to bypass security restrictions after authenticating with Event Streams. By modifying the UI session cookie, it may be possible for a remote attacker to steal user and session information that was sent during an encrypted session...
ZTE ZXV10 W300 v3.1.0c_DR0 - UI Session Vulnerability
Document Title: =============== ZTE ZXV10 W300 v3.1.0cDR0 - UI Session Vulnerability References: =========== http://www.vulnerability-lab.com/getcontent.php?id=1523 Video View: https://www.youtube.com/watch?v=sdSzTguFjY0 Advisory: http://www.vulnerability-lab.com/getcontent.php?id=1522 Release...
ZTE ZXV10 W300 v3.1.0c_DR0 - UI Session Vulnerability
Document Title: =============== ZTE ZXV10 W300 v3.1.0cDR0 - UI Session Vulnerability References: =========== http://www.vulnerability-lab.com/getcontent.php?id=1523 Video View: https://www.youtube.com/watch?v=sdSzTguFjY0 Advisory: http://www.vulnerability-lab.com/getcontent.php?id=1522 Release...
ZTE ZXV10 W300 v3.1.0c_DR0 - UI Session Vulnerability
Document Title: =============== ZTE ZXV10 W300 v3.1.0cDR0 - UI Session Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1522 Release Date: ============= 2015-06-16 Vulnerability Laboratory ID VL-ID: ==================================== 1522...