VYPR
Unrated severityNVD Advisory· Published Feb 4, 2010· Updated Jun 16, 2026

CVE-2010-0554

CVE-2010-0554

Description

The HTTP Authentication implementation in Geo++ GNCASTER 1.4.0.7 and earlier uses the same nonce for all authentication, which allows remote attackers to hijack web sessions or bypass authentication via a replay attack.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3
  • cpe:2.3:a:geopp:geo\+\+_gncaster:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:geopp:geo\+\+_gncaster:*:*:*:*:*:*:*:*range: <=1.4.0.7
    • cpe:2.3:a:geopp:geo\+\+_gncaster:1.4.0.0:*:*:*:*:*:*:*
  • Geo++/GNCASTERllm-fuzzy
    Range: <=1.4.0.7

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.