CVE-2008-3738

CRITICAL

SpaceTag LacoodaST <2.1.3 - Info Disclosure

Title source: llm

Description

Session fixation vulnerability in SpaceTag LacoodaST 2.1.3 and earlier allows remote attackers to hijack web sessions via unspecified vectors.

References (4)

Scores

CVSS v3 9.1
EPSS 0.0027
EPSS Percentile 50.4%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

Classification

CWE
CWE-287
Status draft

Affected Products (1)

spacetag/lacoodast < 2.1.3

Timeline

Published Aug 27, 2008
Tracked Since Feb 18, 2026