CVE-2024-23590 | Apache Kylin up to 4.x Web Interface session fixiation

Inserito da Angelo Barbosa | Nov 3, 2024 | CVE

A vulnerability was found in Apache Kylin up to 4.x. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component Web Interface. The manipulation leads to session fixiation.

This vulnerability is known as CVE-2024-23590. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-23590 | Apache Kylin up to 4.x Web Interface session fixiation

Post correlati

HPE ArubaOS CLI Service buffer overflow (ARUBA-PSA-2023-017)

CVE-2024-42054 | Cervantes up to 0.5-alpha unrestricted upload

CVE-2024-45294 | hapifhir HL7 FHIR Core Artifacts up to 6.3.22 xml external entity reference

CVE-2024-44098 | Google Android lwis_event.c lwis_device_event_states_clear_locked double free