CompoundIncomplete
CWE-384Session Fixation
Category: auth
Description
Authenticating a user, or otherwise establishing a new user session, without invalidating any existing session identifier gives an attacker the opportunity to steal authenticated sessions.
Common consequences· 1
- Access Control — Gain Privileges or Assume Identity
Potential mitigations· 3
- [Architecture and Design]Invalidate any existing session identifiers prior to authorizing a new user session.
- [Architecture and Design]For platforms such as ASP that do not generate new values for sessionid cookies, utilize a secondary cookie. In this approach, set a secondary cookie on the user's browser to a random value and set a session variable to the same value. If the session variable and the cookie value ever don't match, invalidate the session, and force the user to log on again.
- [Operation]Use an application firewall that can detect attacks against this weakness. It can be beneficial in cases in which the code cannot be fixed (because it is controlled by a third party), as an emergency prevention measure while more comprehensive software assurance measures are applied, or to provide defense in depth [REF-1481].
Related CAPEC attack patterns· 7
References
Exploits (incoming)7
| Type | Target | Confidence | Tier |
|---|---|---|---|
| AttackPattern | Session Credential Falsification through Predictioncapec-59 | 100% | live |
| AttackPattern | Session Fixationcapec-61 | 100% | live |
| AttackPattern | Manipulating Opaque Client-based Data Tokenscapec-39 | 100% | live |
| AttackPattern | Reusing Session IDs (aka Session Replay)capec-60 | 100% | live |
| AttackPattern | Exploitation of Trusted Identifierscapec-21 | 100% | live |
| AttackPattern | Session Credential Falsification through Forgingcapec-196 | 100% | live |
| AttackPattern | Accessing/Intercepting/Modifying HTTP Cookiescapec-31 | 100% | live |
(incoming)30
| Type | Target | Confidence | Tier |
|---|---|---|---|
| Vulnerability | CVE-2025-10228cve-2025-10228 | 0% | live |
| Vulnerability | CVE-2025-1412cve-2025-1412 | 0% | live |
| Vulnerability | CVE-2025-27661cve-2025-27661 | 0% | live |
| Vulnerability | CVE-2025-28238cve-2025-28238 | 0% | live |
| Vulnerability | CVE-2025-28242cve-2025-28242 | 0% | live |
| Vulnerability | CVE-2025-29928cve-2025-29928 | 0% | live |
| Vulnerability | CVE-2025-45949cve-2025-45949 | 0% | live |
| Vulnerability | CVE-2025-45953cve-2025-45953 | 0% | live |
| Vulnerability | CVE-2025-46815cve-2025-46815 | 0% | live |
| Vulnerability | CVE-2025-52689cve-2025-52689 | 0% | live |
| Vulnerability | CVE-2025-53102cve-2025-53102 | 0% | live |
| Vulnerability | CVE-2025-53895cve-2025-53895 | 0% | live |
| Vulnerability | CVE-2025-54761cve-2025-54761 | 0% | live |
| Vulnerability | CVE-2025-56400cve-2025-56400 | 0% | live |
| Vulnerability | CVE-2025-59841cve-2025-59841 | 0% | live |
| Vulnerability | CVE-2025-63216cve-2025-63216 | 0% | live |
| Vulnerability | CVE-2025-63224cve-2025-63224 | 0% | live |
| Vulnerability | CVE-2025-63529cve-2025-63529 | 0% | live |
| Vulnerability | CVE-2025-69602cve-2025-69602 | 0% | live |
| Vulnerability | CVE-2025-7014cve-2025-7014 | 0% | live |
| Vulnerability | CVE-2025-7015cve-2025-7015 | 0% | live |
| Vulnerability | CVE-2025-71057cve-2025-71057 | 0% | live |
| Vulnerability | CVE-2026-23796cve-2026-23796 | 0% | live |
| Vulnerability | CVE-2026-24352cve-2026-24352 | 0% | live |
| Vulnerability | CVE-2026-25101cve-2026-25101 | 0% | live |
| Vulnerability | CVE-2026-30808cve-2026-30808 | 0% | live |
| Vulnerability | CVE-2026-31940cve-2026-31940 | 0% | live |
| Vulnerability | CVE-2026-33757cve-2026-33757 | 0% | live |
| Vulnerability | CVE-2026-40010cve-2026-40010 | 0% | live |
| Vulnerability | CVE-2026-41613cve-2026-41613 | 0% | live |
Related by meaning· 6
Nearest entities by semantic similarity across the cs-graph corpus.