CVE-2018-1148
N/A
N/A
Summary
In Nessus before 7.1.0, Session Fixation exists due to insufficient session management within the application. An authenticated attacker could maintain system access due to session fixation after a user password change.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Tenable | Tenable Nessus | All versions prior to 7.1.0 | affected |
Weaknesses
- Session Fixation
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.