CVE-2025-10228

CVSS v3.1

8.8

High

Vector

AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Rolantis Information Technologies Agentis versions prior to 4.44

Description A session fixation issue exists in Rolantis Information Technologies Agentis. This allows an attacker to set or manipulate a user's session identifier before authentication, potentially leading to session hijacking.

Recommendations Update Rolantis Information Technologies Agentis to version 4.44 or later.

Fix

Session Fixation

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-384

Related Identifiers

CVE-2025-10228

Affected Products

Agentis

CVE-2025-10228

Weakness Enumeration

Related Identifiers

Affected Products

References · 6