CVE-2018-19443 – tryton

Package

Manager: pip
Name: tryton
Vulnerable Version: =5.0.0 || >=5.0.0 <5.0.1

Severity

Level: High

CVSS v3.1: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

EPSS: 0.00196 pctl0.4181

Details

Session Fixation in Tryton The client in Tryton 5.x before 5.0.1 tries to make a connection to the bus in cleartext instead of encrypted under certain circumstances in bus.py and jsonrpc.py. This connection attempt fails, but it contains in the header the current session of the user. This session could then be stolen by a man-in-the-middle.

Metadata

Created: 2018-11-29T21:30:56Z
Modified: 2024-11-13T22:54:09Z
Source: https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2018/11/GHSA-32w7-9whp-cjp9/GHSA-32w7-9whp-cjp9.json
CWE IDs: ["CWE-384"]
Alternative ID: GHSA-32w7-9whp-cjp9
Finding: F062
Auto approve: 1