// For flags

CVE-2012-2735

cumin: session fixation flaw

Severity Score

4.9
*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

Session fixation vulnerability in Cumin before 0.1.5444, as used in Red Hat Enterprise Messaging, Realtime, and Grid (MRG) 2.0, allows remote attackers to hijack web sessions via a crafted session cookie.

Vulnerabilidad de fijación de sesión en Cumin antes de v0.1.5444, tal y como se usa en Red Hat Enterprise Messaging, Realtime, y Grid (MRG) v2.0 permite a atacantes remotos secuestrar sesiones web a través de una cookie de sesión modificada a mano.

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Medium
Authentication
Single
Confidentiality
Partial
Integrity
Partial
Availability
None
Attack Vector
Network
Attack Complexity
Medium
Authentication
None
Confidentiality
None
Integrity
Partial
Availability
None
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2012-05-14 CVE Reserved
  • 2012-09-20 CVE Published
  • 2023-08-19 EPSS Updated
  • 2024-08-06 CVE Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
  • CWE-384: Session Fixation
CAPEC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Trevor Mckay
Search vendor "Trevor Mckay"
Cumin
Search vendor "Trevor Mckay" for product "Cumin"
<= 0.1.5192-4
Search vendor "Trevor Mckay" for product "Cumin" and version " <= 0.1.5192-4"
-
Affected
Trevor Mckay
Search vendor "Trevor Mckay"
Cumin
Search vendor "Trevor Mckay" for product "Cumin"
0.1.3160-1
Search vendor "Trevor Mckay" for product "Cumin" and version "0.1.3160-1"
-
Affected
Trevor Mckay
Search vendor "Trevor Mckay"
Cumin
Search vendor "Trevor Mckay" for product "Cumin"
0.1.4369-1
Search vendor "Trevor Mckay" for product "Cumin" and version "0.1.4369-1"
-
Affected
Trevor Mckay
Search vendor "Trevor Mckay"
Cumin
Search vendor "Trevor Mckay" for product "Cumin"
0.1.4410-2
Search vendor "Trevor Mckay" for product "Cumin" and version "0.1.4410-2"
-
Affected
Trevor Mckay
Search vendor "Trevor Mckay"
Cumin
Search vendor "Trevor Mckay" for product "Cumin"
0.1.4494-1
Search vendor "Trevor Mckay" for product "Cumin" and version "0.1.4494-1"
-
Affected
Trevor Mckay
Search vendor "Trevor Mckay"
Cumin
Search vendor "Trevor Mckay" for product "Cumin"
0.1.4794-1
Search vendor "Trevor Mckay" for product "Cumin" and version "0.1.4794-1"
-
Affected
Trevor Mckay
Search vendor "Trevor Mckay"
Cumin
Search vendor "Trevor Mckay" for product "Cumin"
0.1.4916-1
Search vendor "Trevor Mckay" for product "Cumin" and version "0.1.4916-1"
-
Affected
Trevor Mckay
Search vendor "Trevor Mckay"
Cumin
Search vendor "Trevor Mckay" for product "Cumin"
0.1.5033-1
Search vendor "Trevor Mckay" for product "Cumin" and version "0.1.5033-1"
-
Affected
Trevor Mckay
Search vendor "Trevor Mckay"
Cumin
Search vendor "Trevor Mckay" for product "Cumin"
0.1.5037-1
Search vendor "Trevor Mckay" for product "Cumin" and version "0.1.5037-1"
-
Affected
Trevor Mckay
Search vendor "Trevor Mckay"
Cumin
Search vendor "Trevor Mckay" for product "Cumin"
0.1.5054-1
Search vendor "Trevor Mckay" for product "Cumin" and version "0.1.5054-1"
-
Affected
Trevor Mckay
Search vendor "Trevor Mckay"
Cumin
Search vendor "Trevor Mckay" for product "Cumin"
0.1.5068-1
Search vendor "Trevor Mckay" for product "Cumin" and version "0.1.5068-1"
-
Affected
Trevor Mckay
Search vendor "Trevor Mckay"
Cumin
Search vendor "Trevor Mckay" for product "Cumin"
0.1.5092-1
Search vendor "Trevor Mckay" for product "Cumin" and version "0.1.5092-1"
-
Affected
Trevor Mckay
Search vendor "Trevor Mckay"
Cumin
Search vendor "Trevor Mckay" for product "Cumin"
0.1.5098-2
Search vendor "Trevor Mckay" for product "Cumin" and version "0.1.5098-2"
-
Affected
Trevor Mckay
Search vendor "Trevor Mckay"
Cumin
Search vendor "Trevor Mckay" for product "Cumin"
0.1.5105-1
Search vendor "Trevor Mckay" for product "Cumin" and version "0.1.5105-1"
-
Affected
Trevor Mckay
Search vendor "Trevor Mckay"
Cumin
Search vendor "Trevor Mckay" for product "Cumin"
0.1.5137-1
Search vendor "Trevor Mckay" for product "Cumin" and version "0.1.5137-1"
-
Affected
Trevor Mckay
Search vendor "Trevor Mckay"
Cumin
Search vendor "Trevor Mckay" for product "Cumin"
0.1.5137-2
Search vendor "Trevor Mckay" for product "Cumin" and version "0.1.5137-2"
-
Affected
Trevor Mckay
Search vendor "Trevor Mckay"
Cumin
Search vendor "Trevor Mckay" for product "Cumin"
0.1.5137-3
Search vendor "Trevor Mckay" for product "Cumin" and version "0.1.5137-3"
-
Affected
Trevor Mckay
Search vendor "Trevor Mckay"
Cumin
Search vendor "Trevor Mckay" for product "Cumin"
0.1.5137-4
Search vendor "Trevor Mckay" for product "Cumin" and version "0.1.5137-4"
-
Affected
Trevor Mckay
Search vendor "Trevor Mckay"
Cumin
Search vendor "Trevor Mckay" for product "Cumin"
0.1.5137-5
Search vendor "Trevor Mckay" for product "Cumin" and version "0.1.5137-5"
-
Affected
Trevor Mckay
Search vendor "Trevor Mckay"
Cumin
Search vendor "Trevor Mckay" for product "Cumin"
0.1.5192-1
Search vendor "Trevor Mckay" for product "Cumin" and version "0.1.5192-1"
-
Affected
Redhat
Search vendor "Redhat"
Enterprise Mrg
Search vendor "Redhat" for product "Enterprise Mrg"
2.0
Search vendor "Redhat" for product "Enterprise Mrg" and version "2.0"
-
Affected