Reliance on Cookies without Validation and Integrity Checking vulnerability in Talya Informatics Elektraweb allows Session Credential Falsification through Manipulation, Accessing/Intercepting/Modifying HTTP Cookies, Manipulating Opaque Client-based Data Tokens.This issue affects Elektraweb: before v17.0.68.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://www.usom.gov.tr/bildirim/tr-24-0808 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: TR-CERT
Published: 2024-06-27T09:27:41.220Z
Updated: 2024-08-01T18:26:29.991Z
Reserved: 2024-01-26T12:45:13.714Z
Link: CVE-2024-0947
Vulnrichment
Updated: 2024-08-01T18:26:29.991Z
NVD
Status : Awaiting Analysis
Published: 2024-06-27T10:15:11.563
Modified: 2024-11-21T08:47:50.780
Link: CVE-2024-0947
Redhat
No data.