CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2015-0994

Inductive Automation Ignition 7.7.2 allows remote authenticated users to bypass a brute-force protection mechanism by using different session ID values in a series of HTTP requests.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 34.1%

CVSS Severity

CVSS v2 Score 4.0

References

https://ics-cert.us-cert.gov/advisories/ICSA-15-090-01
https://ics-cert.us-cert.gov/advisories/ICSA-15-090-01

Products affected by CVE-2015-0994

Inductiveautomation » Ignition » Version: 7.7.2

cpe:2.3:a:inductiveautomation:ignition:7.7.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2015-0994

Products

Pricing

Contact Us