CVE-2024-35220 | fastify session up to 10.8.0 Cookie session expiration (ID 251)

Posted by Angelo Barbosa | May 22, 2024 | CVE

A vulnerability was found in fastify session up to 10.8.0. It has been classified as problematic. Affected is an unknown function of the component Cookie Handler. The manipulation leads to session expiration.

This vulnerability is traded as CVE-2024-35220. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-35220 | fastify session up to 10.8.0 Cookie session expiration (ID 251)

Related Posts

Mozilla Thunderbird ReadableByteStreams use after free

CVE-2024-41940 | Siemens SINEC NMS up to 2.x os command injection (ssa-784301)

CVE-2024-24043 | Speedy11CZ MCRPX up to 1.4.0 File path traversal

CVE-2024-36414 | SalesAgility SuiteCRM up to 7.14.3/8.6.0 server-side request forgery (GHSA-wg74-772c-8gr7)