CVE-2013-6994

Opentext Exceed Ondemand - Cryptographic Issue

Title source: rule

Description

OpenText Exceed OnDemand (EoD) 8 transmits the session ID in cleartext, which allows remote attackers to perform session fixation attacks by sniffing the network.

References (1)

Core 1

Core References

Various Sources x_refsource_misc

https://github.com/koto/exceed-mitm

View Writeup ZIP pw:eip

Scores

EPSS 0.0024

EPSS Percentile 47.4%

Details

CWE

CWE-310

Status published

Products (1)

opentext/exceed_ondemand 8.0

Published May 19, 2014

Tracked Since Feb 18, 2026