Podatność CVE-2024-7698


Publikacja: 2024-09-10

Opis:
A low privileged remote attacker can get access to CSRF tokens of higher privileged users which can be abused to mount CSRF attacks.

Typ:

CWE-212

(Improper Cross-boundary Removal of Sensitive Data)

 Referencje:
https://cert.vde.com/en/advisories/VDE-2024-039

Copyright 2024, cxsecurity.com

 

Back to Top