Session fixation vulnerability in Falcon WisePoint 4.1.19.7 and earlier allows remote attackers to hijack web sessions via unspecified vectors.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| falconsc | wisepoint | 4.1.10 |
| falconsc | wisepoint | 4.1.13 |
| falconsc | wisepoint | 3.6.8 |
| falconsc | wisepoint | 4.1.0 |
| falconsc | wisepoint | 3.6.11 |
| falconsc | wisepoint | 4.1.19.6 |
| falconsc | wisepoint | 3.7.3 |
| falconsc | wisepoint | 4.1.17 |
| falconsc | wisepoint | * |
| falconsc | wisepoint | 3.7.0 |
| falconsc | wisepoint | 4.1.18 |
| falconsc | wisepoint | 4.1.19 |
| falconsc | wisepoint | 3.7.1 |
| falconsc | wisepoint | 4.1.19.1 |
| falconsc | wisepoint | 3.6.13 |
| falconsc | wisepoint | 3.6.10 |
| falconsc | wisepoint | 3.7.2 |
| falconsc | wisepoint | 4.1.19.2 |
| falconsc | wisepoint | 3.6.15 |
| falconsc | wisepoint | 3.6.7 |
| falconsc | wisepoint | 4.1.19.4 |
The management screen in Falcon WisePoint 4.3.1 and earlier and WisePoint Authenticator 4.1.19.22 and earlier allows remote attackers to conduct clickjacking attacks via unspecified vectors.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-254,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| falconsc | wisepoint_authenticator | * |
| falconsc | wisepoint | * |