CVE-2026-12581: CWE-384 Session fixation in Digiwin EasyFlow .NET
Digiwin EasyFlow .NET contains a session fixation vulnerability (CWE-384) that allows unauthenticated remote attackers to set a specific session ID for a user. If successful, the attacker can gain the user's privileges once the user logs in. This vulnerability has a high severity with a CVSS 4.0 score of 7.7. No affected versions or patches have been explicitly stated.
AI Analysis
Technical Summary
CVE-2026-12581 describes a session fixation vulnerability in Digiwin EasyFlow .NET. The flaw allows an unauthenticated remote attacker to replace a session ID for a user before login. When the user authenticates, the attacker can hijack the session and gain the user's privileges. The vulnerability is categorized under CWE-384 (Session Fixation). The CVSS 4.0 vector indicates network attack vector, low attack complexity, partial attack traceability, no privileges required, user interaction required, and high impacts on confidentiality, integrity, and availability. No official remediation or patch information is currently available.
Potential Impact
Successful exploitation allows an attacker to hijack a user's session by fixing the session ID before login, thereby gaining the user's privileges. This can lead to unauthorized access to sensitive information and actions within the EasyFlow .NET application. The high CVSS score reflects significant confidentiality, integrity, and availability impacts.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Until an official fix is available, users should consider implementing additional session management controls such as regenerating session IDs upon login and monitoring for suspicious session activity if possible.
CVE-2026-12581: CWE-384 Session fixation in Digiwin EasyFlow .NET
Description
Digiwin EasyFlow .NET contains a session fixation vulnerability (CWE-384) that allows unauthenticated remote attackers to set a specific session ID for a user. If successful, the attacker can gain the user's privileges once the user logs in. This vulnerability has a high severity with a CVSS 4.0 score of 7.7. No affected versions or patches have been explicitly stated.
CVSS v4.0
Score 7.7high
Weaknesses
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
CVE-2026-12581 describes a session fixation vulnerability in Digiwin EasyFlow .NET. The flaw allows an unauthenticated remote attacker to replace a session ID for a user before login. When the user authenticates, the attacker can hijack the session and gain the user's privileges. The vulnerability is categorized under CWE-384 (Session Fixation). The CVSS 4.0 vector indicates network attack vector, low attack complexity, partial attack traceability, no privileges required, user interaction required, and high impacts on confidentiality, integrity, and availability. No official remediation or patch information is currently available.
Potential Impact
Successful exploitation allows an attacker to hijack a user's session by fixing the session ID before login, thereby gaining the user's privileges. This can lead to unauthorized access to sensitive information and actions within the EasyFlow .NET application. The high CVSS score reflects significant confidentiality, integrity, and availability impacts.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Until an official fix is available, users should consider implementing additional session management controls such as regenerating session IDs upon login and monitoring for suspicious session activity if possible.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- twcert
- Date Reserved
- 2026-06-18T06:51:13.798Z
- Cvss Version
- 4.0
- State
- PUBLISHED
- Remediation Level
- null
Threat ID: 6a3909d2eed863c81ea13a06
Added to database: 06/22/2026, 10:09:22 UTC
Last enriched: 06/22/2026, 10:24:05 UTC
Last updated: 06/22/2026, 10:29:02 UTC
Views: 3
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.