It was discovered that the hawtio servlet 1.4 uses a single HttpClient instance to proxy requests with a persistent cookie store (cookies are stored locally and are not passed between the client and the end URL) which means all clients using that proxy are sharing the same cookies.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: redhat
Published: 2018-07-26T15:00:00
Updated: 2024-08-05T14:02:06.497Z
Reserved: 2016-12-01T00:00:00
Link: CVE-2017-2589
Vulnrichment
No data.
NVD
Status : Modified
Published: 2018-07-26T15:29:00.217
Modified: 2024-11-21T03:23:47.057
Link: CVE-2017-2589
Redhat