Vulnerability Details CVE-2016-0910
EMC Data Domain OS 5.5 before 5.5.4.0, 5.6 before 5.6.1.004, and 5.7 before 5.7.2.0 stores session identifiers of GUI users in a world-readable file, which allows local users to hijack arbitrary accounts via unspecified vectors.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 33.3%
CVSS Severity
CVSS v3 Score 8.8
CVSS v2 Score 4.3
Products affected by CVE-2016-0910
-
cpe:2.3:o:emc:data_domain_os:5.5.3.3
-
cpe:2.3:o:emc:data_domain_os:5.6.1.0
-
cpe:2.3:o:emc:data_domain_os:5.7.1.0