Vulnerability CVE-2015-2804

Vulnerability CVE-2015-2804

Published: 2015-06-16

Description:

	Topic	Author	Date
Low	Alcatel-Lucent OmniSwitch Web Interface Weak Session ID	RedTeam	10.06.2015

Type:

(Information Exposure)

CVSS Base Score	Impact Subscore	Exploitability Subscore
4.3/10	2.9/10	8.6/10

Affected software
Alcatel-lucent -> Omniswitch firmware

http://packetstormsecurity.com/files/132235/Alcatel-Lucent-OmniSwitch-Web-Interface-Weak-Session-ID.html

http://seclists.org/fulldisclosure/2015/Jun/22

http://www.securityfocus.com/archive/1/535731/100/0/threaded

http://www.securityfocus.com/bid/75125

https://www.redteam-pentesting.de/en/advisories/rt-sa-2015-003/-alcatel-lucent-omniswitch-web-interface-weak-session-id