CVE-2014-1984

Cybozu Remote Service Manager <3.1.1 - Session Fixation

Title source: llm
STIX 2.1

Description

Session fixation vulnerability in the management screen in Cybozu Remote Service Manager through 2.3.0 and 3.x before 3.1.1 allows remote attackers to hijack web sessions via unspecified vectors.

References (3)

Core 3
Core References
Patch, Vendor Advisory x_refsource_confirm
http://cs.cybozu.co.jp/information/20130317notice02.php
Third Party Advisory, VDB Entry third-party-advisory x_refsource_jvndb
http://jvndb.jvn.jp/jvndb/JVNDB-2014-000040
Third Party Advisory, VDB Entry third-party-advisory x_refsource_jvn
http://jvn.jp/en/jp/JVN00058727/index.html

Scores

EPSS 0.0056
EPSS Percentile 68.3%

Details

CWE
CWE-287
Status published
Products (1)
cybozu/remote_service_manager < 2.3.0
Published Apr 19, 2014
Tracked Since Feb 18, 2026