Описание
CVE-2024-6078 IMPACT
An improper authentication vulnerability exists in the affected product, which could allow a malicious user to generate cookies for any user ID without the use of a username or password. If exploited, a malicious user could take over the account of a legitimate user. The malicious user would be able to view and modify data stored in the cloud.
EPSS
Процентиль: 43%
0.00207
Низкий
Дефекты
CWE-287
Связанные уязвимости
github
больше 1 года назад
CVE-2024-6078 IMPACT An improper authentication vulnerability exists in the affected product, which could allow a malicious user to generate cookies for any user ID without the use of a username or password. If exploited, a malicious user could take over the account of a legitimate user. The malicious user would be able to view and modify data stored in the cloud.
EPSS
Процентиль: 43%
0.00207
Низкий
Дефекты
CWE-287