SteVe v3.6.0 was discovered to use predictable transaction ID's when receiving a StartTransaction request. This vulnerability can allow attackers to cause a Denial of Service (DoS) by using the predicted transaction ID's to terminate other transactions.
Products Affected
| Vendor | Product | Version |
|---|---|---|
| steve_project | steve | 3.6.0 |