CVE-2024-12838 | Changing Information Technology CGFIDO up to 1.0.x Passwordless Login authentication bypass by assumed-immutable data

Inserito da Angelo Barbosa | Dic 31, 2024 | CVE

A vulnerability classified as very critical has been found in Changing Information Technology CGFIDO up to 1.0.x. Affected is an unknown function of the component Passwordless Login. The manipulation leads to authentication bypass by assumed-immutable data.

This vulnerability is traded as CVE-2024-12838. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-12838 | Changing Information Technology CGFIDO up to 1.0.x Passwordless Login authentication bypass by assumed-immutable data

Post correlati

CVE-2024-22871 | Clojure up to 1.20 clojure.core$partial$fn__5920 denial of service

CVE-2024-4066 | Tenda AC8 16.03.34.09 /goform/AdvSetMacMtuWan fromAdvSetMacMtuWan stack-based overflow

CVE-2023-52068 | kodbox 1.43 Login Log cross site scripting

CVE-2024-3277 | Yumpu ePaper Publishing Plugin up to 2.0.24 on WordPress authorization