Published: 28/04/2017 Updated: 10/05/2017

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9

VMScore: 668

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Trend Micro Threat Discovery Appliance 2.6.1062r1 and previous versions uses predictable session values, which allows remote malicious users to bypass authentication by guessing the value.

Vulnerable Product	Search on Vulmon	Subscribe to Product
trendmicro threat discovery appliance

Awesome Web Security 🐶 Curated list of Web Security materials and resources Needless to say, most websites suffer from various types of bugs which may eventually lead to vulnerabilities Why would this happen so often? There can be many factors involved including misconfiguration, shortage of engineers' security skills, etc To combat this, here is a curated list o

Awesome Web Security 🐶 Curated list of Web Security materials and resources Needless to say, most of websites on-line are suffered from various type of bugs, which might eventually lead to vulnerabilities Why would this happen so often? Many factors can be involved, including misconfiguration, shortage of engineers' security skills, and etc Therefore, here is the

CWE-284 http://packetstormsecurity.com/files/142227/Trend-Micro-Threat-Discovery-Appliance-2.6.1062r1-Session-Generation-Authentication-Bypass.html http://www.securityfocus.com/bid/98333 https://nvd.nist.gov https://github.com/winterwolf32/Web-security

CVE-2016-8584

Vulnerability Summary

Vulnerability Trend

Github Repositories

References

Vulmon Search

About

Products

Connect