Franklin-electric - System Sentinel Anyware CVE

Filtered by vendor Franklin-electric Subscribe

Filtered by product System Sentinel Anyware

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2023-48929	1 Franklin-electric	1 System Sentinel Anyware	2023-12-12	N/A	9.8 CRITICAL
Franklin Fueling Systems System Sentinel AnyWare (SSA) version 1.6.24.492 is vulnerable to Session Fixation. The 'sid' parameter in the group_status.asp resource allows an attacker to escalate privileges and obtain sensitive information.

Vulnerabilities (CVE)