CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS
Percentile
93.0%
An issue was discovered in ntopng 3.4 before 3.4.180617. The PRNG involved
in the generation of session IDs is not seeded at program startup. This
results in deterministic session IDs being allocated for active user
sessions. An attacker with foreknowledge of the operating system and
standard library in use by the host running the service and the username of
the user whose session they’re targeting can abuse the deterministic random
number generation in order to hijack the user’s session, thus escalating
their access.
seclists.org/fulldisclosure/2018/Jul/14
gist.github.com/Psychotropos/3e8c047cada9b1fb716e6a014a428b7f
github.com/ntop/ntopng/commit/30610bda60cbfc058f90a1c0a17d0e8f4516221a
launchpad.net/bugs/cve/CVE-2018-12520
nvd.nist.gov/vuln/detail/CVE-2018-12520
security-tracker.debian.org/tracker/CVE-2018-12520
ubuntu.com/security/notices/USN-4842-1
www.cve.org/CVERecord?id=CVE-2018-12520
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS
Percentile
93.0%