Acunetix DAST powers runtime capabilities for Invicti’s complete AppSec platform. Visit Invicti for more.

WEB APPLICATION VULNERABILITIES Standard & Premium

OpenSSL Improper Authentication Vulnerability (CVE-2010-4252)

Description

CVE-2010-4252 openssl: session key retrieval flaw in J-PAKE implementation

Remediation

References

Related Vulnerabilities

Joomla! Core 3.x.x Information Disclosure (3.0.0 - 3.9.19)

Piwigo Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-48007)

WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-16218)

Nginx Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') Vulnerability (CVE-2019-20372)

Magento Improper Input Validation Vulnerability (CVE-2022-24086)

Severity

High

Classification

CVE-2010-4252 CWE-287

Tags

Missing Update Known Vulnerabilities