Apache Wicket before 1.5.12, 6.x before 6.17.0, and 7.x before 7.0.0-M3 might allow remote attackers to obtain sensitive information via vectors involving identifiers for storing page markup for temporary user sessions.
References
Link | Resource |
---|---|
https://wicket.apache.org/news/2014/09/22/cve-2014-3526.html | Issue Tracking Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: redhat
Published: 2017-10-30T14:00:00
Updated: 2017-10-30T13:57:01
Reserved: 2014-05-14T00:00:00
Link: CVE-2014-3526
JSON object: View
NVD Information
Status : Analyzed
Published: 2017-10-30T14:29:00.500
Modified: 2019-12-11T22:12:49.220
Link: CVE-2014-3526
JSON object: View
Redhat Information
No data.
CWE