CVE-2025-70973

{"id": "CVE-2025-70973", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 4.8, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "LOW"}, "impactScore": 2.5, "exploitabilityScore": 2.2}]}, "published": "2026-03-09T21:16:12.727", "references": [{"url": "https://github.com/chiranjib2001/ScadaBR/blob/main/README.md", "tags": ["Exploit", "Mailing List", "Third Party Advisory"], "source": "cve@mitre.org"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "description": [{"lang": "en", "value": "CWE-384"}]}], "descriptions": [{"lang": "en", "value": "ScadaBR 1.12.4 is vulnerable to Session Fixation. The application assigns a JSESSIONID session cookie to unauthenticated users and does not regenerate the session identifier after successful authentication. As a result, a session created prior to login becomes authenticated once the victim logs in, allowing an attacker who knows the session ID to hijack an authenticated session."}, {"lang": "es", "value": "ScadaBR 1.12.4 es vulnerable a la fijaci\u00f3n de sesi\u00f3n. La aplicaci\u00f3n asigna una cookie de sesi\u00f3n JSESSIONID a usuarios no autenticados y no regenera el identificador de sesi\u00f3n despu\u00e9s de una autenticaci\u00f3n exitosa. Como resultado, una sesi\u00f3n creada antes del inicio de sesi\u00f3n se autentica una vez que la v\u00edctima inicia sesi\u00f3n, lo que permite a un atacante que conoce el ID de sesi\u00f3n secuestrar una sesi\u00f3n autenticada."}], "lastModified": "2026-04-07T16:04:45.323", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:scadabr:scadabr:1.12.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7476FE8F-BD16-4A6D-8DA5-E8833DB652F6"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}