Filtered by vendor Broadcom
Subscriptions
Filtered by product 2e Web Option
Subscriptions
Total
1 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2014-1219 | 1 Broadcom | 1 2e Web Option | 2024-08-06 | N/A |
CA 2E Web Option r8.1.2 accepts a predictable substring of a W2E_SSNID session token in place of the entire token, which allows remote attackers to hijack sessions by changing characters at the end of this substring, as demonstrated by terminating a session via a modified SSNID parameter to web2edoc/close.htm. |
Page 1 of 1.