ГлавнаяУязвимости → CVE-2024-24552
8.8высокая

CVE-2024-24552

Описание

A session fixation vulnerability in Bludit allows an attacker to bypass the server's authentication if they can trick an administrator or any other user into authorizing a session ID of their choosing.

Затрагиваемое ПО
Bludit Bludit
CVSS
Балл8.8 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Источники
https://www.redguard.ch/blog/2024/06/20/security-advisory-bludit/https://www.redguard.ch/blog/2024/06/20/security-advisory-bludit/