CVE-2024-10141 | jsbroks COCO Annotator 0.11.1 Session SECRET_KEY predictable state (Issue 626)

Inserito da Angelo Barbosa | Ott 18, 2024 | CVE

A vulnerability, which was classified as problematic, was found in jsbroks COCO Annotator 0.11.1. This affects an unknown part of the component Session Handler. The manipulation of the argument SECRET_KEY leads to predictable from observable state.

This vulnerability is uniquely identified as CVE-2024-10141. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

CVE-2024-10141 | jsbroks COCO Annotator 0.11.1 Session SECRET_KEY predictable state (Issue 626)

Post correlati

CVE-2024-33958 | Janobe E-Negosyo System 1.0 /passwordrecover.php phonenumber sql injection

CVE-2024-40130 | Open5GS 2.6.4 /lib/core/abts.c buffer overflow

CVE-2021-46911 | Linux Kernel up to 5.10.31/5.11/5.11.15 Page Refcount ch_ktls denial of service (8d5a9dbd2116/8348665d4181/1a73e427b824)

CVE-2024-2762 | FooGallery Plugin/FooGallery Premium Plugin up to 2.4.14 on WordPress Gallery Setting cross site scripting