CVE-2024-25718 | Samly up to 1.3.x on Elixir Samly.State.Store.get_assertion session expiration

Inserito da Angelo Barbosa | Feb 11, 2024 | CVE

A vulnerability was found in Samly up to 1.3.x on Elixir and classified as problematic. Affected by this issue is the function Samly.State.Store.get_assertion. The manipulation leads to session expiration.

This vulnerability is handled as CVE-2024-25718. The attack needs to be approached within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-25718 | Samly up to 1.3.x on Elixir Samly.State.Store.get_assertion session expiration

Post correlati

CVE-2021-46969 | Linux Kernel up to 5.12.2 mhi mhi_queue use after free (a99b661c3187/0ecc1c70dcd3)

CVE-2024-7345 | Progress OpenEdge up to 11.7.19/12.2.14 Multi-Session Agent code injection

CVE-2024-32085 | AitThemes Citadela Listing Plugin up to 5.18.1 on WordPress cross-site request forgery

CVE-2024-3887 | Royal Elementor Addons and Templates Plugin up to 1.3.974 on WordPress Form Builder Widget cross site scripting