Critical severity9.8NVD Advisory· Published Jul 13, 2018· Updated Jun 17, 2026
CVE-2016-6545
CVE-2016-6545
Description
Session cookies are not used for maintaining valid sessions in iTrack Easy. The user's password is passed as a POST parameter over HTTPS using a base64 encoded passwd field on every request. In this implementation, sessions can only be terminated when the user changes the associated password.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
3- www.securityfocus.com/bid/93875nvdThird Party AdvisoryVDB Entry
- blog.rapid7.com/2016/10/25/multiple-bluetooth-low-energy-ble-tracker-vulnerabilities/nvdThird Party Advisory
- www.kb.cert.org/vuls/id/974055nvdThird Party AdvisoryUS Government Resource
News mentions
0No linked articles in our index yet.