Vulnerabilities > Ieasytec > Itrackeasy
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-07-13 | CVE-2016-6545 | Session Fixation vulnerability in Ieasytec Itrackeasy Session cookies are not used for maintaining valid sessions in iTrack Easy. | 9.8 |
| 2018-07-13 | CVE-2016-6542 | Improper Input Validation vulnerability in Ieasytec Itrackeasy The iTrack device tracking ID number, also called "LosserID" in the web API, can be obtained by being in the range of an iTrack device. | 3.7 |