Vulnerability in Emerson Rosemount X-stream Gas Analyzer

CVE-2021-27463

A vulnerability has been found in multiple revisions of Emerson Rosemount X-STREAM Gas Analyzer. The affected applications utilize persistent cookies where the session cookie attribute is not properly invalidated, allowing an attacker to i…

EPSS: 0.002 (37.2th percentile) — read the EPSS interpretation.

Affected products

N/a Emerson Rosemount X-stream Gas Analyzer — versions X-STREAM enhanced XEGP – all revisions, X-STREAM enhanced XEGK – all revisions, X-STREAM enhanced XEFD – all revisions, X-STREAM enhanced XEXF – all revisions

Weakness classification (CWE)

CWE-539

References

us-cert.cisa.gov/ics/advisories/icsa-21-138-01 (x_refsource_MISC)