SteVe v3.6.0 was discovered to use predictable transaction IDs when receiving a StartTransaction request. This vulnerability can allow attackers to cause a Denial of Service (DoS) by using the predicted transaction IDs to terminate other transactions.
References