CVE-2026-5085

216.73.217.22

· Published 13/04/2026 07:16 · Modified 13/04/2026 16:16

Labels: CVE-2026-5085 2026-04-13 9b29abf9-4ab0-4765-b253-1875cd9b441e CVE-2026-5085 CWE-338

Essential information

Published: 13/04/2026 07:16
Modified: 13/04/2026 16:16
Author: —
Creator: —
CVSS: 9.1 CRITICAL (v3.1)
CISA KEV: No
CWE: —
CVSS vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

CVSS metrics

Description

Solstice::Session versions through 1440 for Perl generates session ids insecurely. The _generateSessionID method returns an MD5 digest seeded by the epoch time, a random hash reference, a call to the built-in rand() function and the process id. The same method is used in the _generateID method in Solstice::Subsession, which is part of the same distribution. The epoch time may be guessed, if it is not leaked in the HTTP Date header. Stringified hash refences will contain predictable content. The built-in rand() function is seeded by 16-bits and is unsuitable for security purposes. The process id comes from a small set of numbers. Predictable session ids could allow an attacker to gain access to systems.

NVD status

Status: Undergoing Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source: 9b29abf9-4ab0-4765-b253-1875cd9b441e
NVD: View on NVD

Affected products (CPE)

Product	CPE
solstice / session	`cpe:2.3:a:solstice:session::::::::`