Podatność CVE-2023-48929


Publikacja: 2023-12-08   Modyfikacja: 2023-12-14

Opis:
Franklin Fueling Systems System Sentinel AnyWare (SSA) version 1.6.24.492 is vulnerable to Session Fixation. The 'sid' parameter in the group_status.asp resource allows an attacker to escalate privileges and obtain sensitive information.

Typ:

CWE-384

(Session Fixation)

Affected software
Franklin-electric -> System sentinel anyware 

 Referencje:
https://github.com/MatJosephs/CVEs/tree/main/CVE-2023-48929

Copyright 2024, cxsecurity.com

 

Back to Top