Описание
HCL MyXalytics is affected by a session fixation vulnerability. Cyber-criminals can exploit this by sending crafted URLs with a session token to access the victim's login session.
Ссылки
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:hcltech:dryice_myxalytics:6.3:*:*:*:*:*:*:*
EPSS
Процентиль: 25%
0.00087
Низкий
6.8 Medium
CVSS3
Дефекты
CWE-384
CWE-384
Связанные уязвимости
CVSS3: 6.8
github
около 1 года назад
HCL MyXalytics is affected by a session fixation vulnerability. Cyber-criminals can exploit this by sending crafted URLs with a session token to access the victim's login session.
EPSS
Процентиль: 25%
0.00087
Низкий
6.8 Medium
CVSS3
Дефекты
CWE-384
CWE-384