Vulnerability Details CVE-2012-3024
Tridium Niagara AX Framework through 3.6 uses predictable values for (1) session IDs and (2) keys, which might allow remote attackers to bypass authentication via a brute-force attack.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.01
EPSS Ranking 76.0%
CVSS Severity
CVSS v2 Score 5.0
References
Products affected by CVE-2012-3024
-
cpe:2.3:a:tridium:niagara_ax:3.5
-
cpe:2.3:a:tridium:niagara_ax:3.6