CVE-2015-6845

Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
18/10/2015
Last modified:
12/04/2025

Description

EMC SourceOne Email Supervisor before 7.2 does not properly employ random values for session IDs, which makes it easier for remote attackers to obtain access by guessing an ID.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:emc:sourceone_email_supervisor:*:*:*:*:*:*:*:* 7.1 (including)