Raffaela Frank

**Name of the Vulnerable Software and Affected Versions** OrientDB Server Community Edition versions 2.0.0 through 2.0.14 OrientDB Server Community Edition versions 2.1.0 through 2.1.0 **Description** The issue concerns the JSONP endpoint in the Studio component, which does not properly restrict callback values. This allows remote attackers to conduct cross-site request forgery (CSRF) attacks and obtain sensitive information via a crafted HTTP request. **Recommendations** For OrientDB Server Community Edition versions 2.0.0 through 2.0.14, update to version 2.0.15 or later. For OrientDB Server Community Edition versions 2.1.0 through 2.1.0, update to version 2.1.1 or later.

**Name of the Vulnerable Software and Affected Versions** OrientDB Server Community Edition versions 2.0.0 through 2.0.14 OrientDB Server Community Edition versions 2.1.x prior to 2.1.1 **Description** The issue arises from the improper reliance on the `java.util.Random` class for generating random Session ID values in the `server/network/protocol/http/OHttpSessionManager.java` file. This makes it easier for remote attackers to predict a Session ID value by determining the internal state of the PRNG in this class. **Recommendations** For OrientDB Server Community Edition versions 2.0.0 through 2.0.14, update to version 2.0.15 or later. For OrientDB Server Community Edition versions 2.1.x prior to 2.1.1, update to version 2.1.1 or later.

**Name of the Vulnerable Software and Affected Versions** OrientDB Server Community Edition versions 2.0.0 through 2.0.14 OrientDB Server Community Edition versions 2.1.x prior to 2.1.1 **Description** The issue allows remote attackers to conduct clickjacking attacks via a crafted web site, due to the Studio component not properly restricting use of FRAME elements. **Recommendations** For OrientDB Server Community Edition versions 2.0.0 through 2.0.14, update to version 2.0.15 or later. For OrientDB Server Community Edition versions 2.1.x prior to 2.1.1, update to version 2.1.1 or later.