CVE-2024-39275 - Advantech ADAM-5630 Session Cookie Injection

1 month ago 22
ARTICLE AD BOX
CVE ID : CVE-2024-39275
Published : Sept. 27, 2024, 6:15 p.m. | 24 minutes ago
Description : Cookies of authenticated Advantech ADAM-5630 users remain as active valid cookies when a session is closed. Forging requests with a legitimate cookie, even if the session was terminated, allows an unauthorized attacker to act with the same level of privileges of the legitimate user.
Severity: 8.0 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
Read Entire Article