CVE-2021-44151

Published: Dic 13, 2021 Last Modified: Apr 30, 2025 EU-VD ID: EUVD-2021-31001 Aliases: GSD-2021-44151
ExploitDB:
Other exploit source:
Google Dorks:
HIGH 7,5
Source: [email protected]
Attack Vector: network
Attack Complexity: low
Privileges Required: none
User Interaction: none
Scope: unchanged
Confidentiality: high
Integrity: none
Availability: none
MEDIUM 5,0
Source: [email protected]
Access Vector: network
Access Complexity: low
Authentication: none
Confidentiality: partial
Integrity: none
Availability: none

Description

AI Translation Available

An issue was discovered in Reprise RLM 14.2. As the session cookies are small, an attacker can hijack any existing sessions by bruteforcing the 4 hex-character session cookie on the Windows version (the Linux version appears to have 8 characters). An attacker can obtain the static part of the cookie (cookie name) by first making a request to any page on the application (e.g., /goforms/menu) and saving the name of the cookie sent with the response. The attacker can then use the name of the cookie and try to request that same page, setting a random value for the cookie. If any user has an active session, the page should return with the authorized content, when a valid cookie value is hit.

EPSS (Exploit Prediction Scoring System)

Trend Analysis

EPSS (Exploit Prediction Scoring System)

Prevede la probabilità di sfruttamento basata su intelligence sulle minacce e sulle caratteristiche della vulnerabilità.

EPSS Score
0,0040
Percentile
0,6th
Updated

EPSS Score Trend (Last 91 Days)

330

Use of Insufficiently Random Values

Stable
Abstraction: Class Structure: Simple
Common Consequences
Security Scopes Affected:
Confidentiality Other Access Control
Potential Impacts:
Other Bypass Protection Mechanism Gain Privileges Or Assume Identity
Applicable Platforms
All platforms may be affected
Likelihood of Exploit: High
View CWE Details
Application

Reprise License Manager by Reprisesoftware

Product Information
Vendor Reprisesoftware
Product Reprise License Manager
Version Range Affected
From 14.2 (inclusive)
To 15.1 (exclusive)
cpe:2.3:a:reprisesoftware:reprise_license_manager:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
http://packetstormsecurity.com/files/165191/Reprise-License…
Third Party Advisory VDB Entry
http://packetstormsecurity.com/files/165191/Reprise-License-Manager-14.2-Sessio…
https://reprisesoftware.com/admin/rlm-admin-download.php?&e…
Product Vendor Advisory
https://reprisesoftware.com/admin/rlm-admin-download.php?&euagree=yes
https://www.reprisesoftware.com/RELEASE_NOTES
Broken Link
https://www.reprisesoftware.com/RELEASE_NOTES
http://packetstormsecurity.com/files/165191/Reprise-License…
Third Party Advisory VDB Entry
http://packetstormsecurity.com/files/165191/Reprise-License-Manager-14.2-Sessio…
https://reprisesoftware.com/admin/rlm-admin-download.php?&e…
Product Vendor Advisory
https://reprisesoftware.com/admin/rlm-admin-download.php?&euagree=yes
https://www.reprisesoftware.com/RELEASE_NOTES
Broken Link
https://www.reprisesoftware.com/RELEASE_NOTES