exploitDog

GHSA-r89w-qx4v-xpfv

Опубликовано: 05 фев. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 5.5

Описание

HCL iAutomate is affected by a session fixation vulnerability. An attacker could hijack a victim's session ID from their authenticated session.

HCL iAutomate is affected by a session fixation vulnerability. An attacker could hijack a victim's session ID from their authenticated session.

Ссылки

EPSS

Процентиль: 36%

0.00149

Низкий

5.5 Medium

CVSS3

CVE ID

Дефекты

CWE-384

Связанные уязвимости

CVE-2024-42207

CVSS3: 5.5

nvd

около 1 года назад

HCL iAutomate is affected by a session fixation vulnerability. An attacker could hijack a victim's session ID from their authenticated session.

EPSS

Процентиль: 36%

0.00149

Низкий

5.5 Medium

CVSS3

CVE ID

Дефекты

CWE-384