Reliance on Cookies without Validation and Integrity Checking vulnerability in Talya Informatics Elektraweb allows Session Credential Falsification through Manipulation, Accessing/Intercepting/Modifying HTTP Cookies, Manipulating Opaque Client-based Data Tokens.This issue affects Elektraweb: before v17.0.68.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: TR-CERT

Published: 2024-06-27T09:27:41.220Z

Updated: 2024-08-01T18:26:29.991Z

Reserved: 2024-01-26T12:45:13.714Z

Link: CVE-2024-0947

cve-icon Vulnrichment

Updated: 2024-08-01T18:26:29.991Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2024-06-27T10:15:11.563

Modified: 2024-11-21T08:47:50.780

Link: CVE-2024-0947

cve-icon Redhat

No data.