Vulnerabilities (CVE)

Vendor filter

Netapp Subscribe

Product filter

E-series Santricity Management Plug-ins Subscribe


1 total CVE
CVE Vendors Products Updated CVSS
CVE-2018-12538 2 Eclipse, Netapp 10 Jetty, E-series Santricity Management Plug-ins, E-series Santricity Web Services Proxy and 7 more 2019-10-09 6.5
In Eclipse Jetty versions 9.4.0 through 9.4.8, when using the optional Jetty provided FileSessionDataStore for persistent storage of HttpSession details, it is possible for a malicious user to access/hijack other HttpSessions and even delete...