CVE-2011-2401
Published Jul 29, 2011
Last updated 7 years ago
Overview
- Description
- Session fixation vulnerability in HP SiteScope 9.x, 10.x, and 11.x allows remote attackers to hijack web sessions via unspecified vectors.
- Source
- hp-security-alert@hp.com
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 8.3
- Impact score
- 8.5
- Exploitability score
- 8.6
- Vector string
- AV:N/AC:M/Au:N/C:C/I:P/A:P
Weaknesses
- nvd@nist.gov
- NVD-CWE-Other
Evaluator
- Comment
- Per: http://cwe.mitre.org/data/definitions/384.html 'CWE-384: Session Fixation'
- Impact
- -
- Solution
- -
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:hp:sitescope:9.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "DFC27BE3-016D-464C-AD53-06EE4D7BCD60"
},
{
"criteria": "cpe:2.3:a:hp:sitescope:9.54:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "FDBB474E-FE3F-489F-8119-56F68C3E0242"
},
{
"criteria": "cpe:2.3:a:hp:sitescope:10.00:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "58ECC901-5DE4-4C0E-8B0C-B2EF164C0102"
},
{
"criteria": "cpe:2.3:a:hp:sitescope:10.13:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C62A1094-99FA-4730-9550-133D3C428A7E"
},
{
"criteria": "cpe:2.3:a:hp:sitescope:11.01:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "814ADE5D-DCCD-4C68-BB3D-32828547C361"
},
{
"criteria": "cpe:2.3:a:hp:sitescope:11.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C7C7FCC3-5C45-4A94-AA8D-17C484325255"
}
],
"operator": "OR"
}
]
}
]