CVE-2020-15910 : What You Need to Know
Learn about CVE-2020-15910 affecting SolarWinds N-Central version 12.3 GA and lower due to cookie manipulation vulnerability. Find mitigation steps and prevention measures.
SolarWinds N-Central version 12.3 GA and lower is vulnerable due to not setting the JSESSIONID attribute to HTTPOnly, allowing potential cookie manipulation by attackers.
Understanding CVE-2020-15910
SolarWinds N-Central version 12.3 GA and lower is susceptible to a security issue that could enable attackers to manipulate cookies.
What is CVE-2020-15910?
The vulnerability in SolarWinds N-Central version 12.3 GA and lower arises from the failure to set the JSESSIONID attribute to HTTPOnly, enabling attackers to influence cookies using JavaScript.
The Impact of CVE-2020-15910
The vulnerability could be exploited by attackers to direct users to malicious webpages or extract the JSESSIONID through JavaScript, potentially leading to unauthorized access.
Technical Details of CVE-2020-15910
SolarWinds N-Central version 12.3 GA and lower vulnerability details.
Vulnerability Description
- SolarWinds N-Central version 12.3 GA and lower does not enforce the HTTPOnly attribute for the JSESSIONID, allowing for cookie manipulation.
Affected Systems and Versions
- SolarWinds N-Central version 12.3 GA and lower
Exploitation Mechanism
- Attackers can manipulate cookies by influencing JavaScript to extract the JSESSIONID.
Mitigation and Prevention
Steps to address and prevent the CVE-2020-15910 vulnerability.
Immediate Steps to Take
- Monitor for any unusual activities related to cookies and sessions.
- Implement security headers to enforce cookie attributes like HTTPOnly.
Long-Term Security Practices
- Regularly update SolarWinds N-Central to the latest version.
- Conduct security audits to identify and address vulnerabilities.
Patching and Updates
- Apply patches or updates provided by SolarWinds to address the vulnerability.