CVE-2024-12839 | Changing Information Technology CGFIDO up to 1.2.0 Device Authentication Login authentication replay

Inserito da Angelo Barbosa | Dic 31, 2024 | CVE

A vulnerability, which was classified as critical, has been found in Changing Information Technology CGFIDO up to 1.2.0. Affected by this issue is some unknown functionality of the component Device Authentication Login. The manipulation leads to authentication bypass by capture-replay.

This vulnerability is handled as CVE-2024-12839. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-12839 | Changing Information Technology CGFIDO up to 1.2.0 Device Authentication Login authentication replay

Post correlati

CVE-2024-8080 | SourceCodester Online Health Care System 1.0 search.php f_name sql injection

CVE-2024-6963 | Tenda O3 1.0.0.10 formexeCommand cmdinput stack-based overflow

CVE-2024-8023 | chillzhuang SpringBlade 4.1.0 list sql injection

CVE-2024-33629 | Creative Motion Auto Featured Image Plugin up to 4.0.0 on WordPress server-side request forgery