CVE-2024-57436 | RuoYi 4.8.0 Cookie improper authorization

Posted by Angelo Barbosa | Jan 29, 2025 | CVE

A vulnerability classified as critical was found in RuoYi 4.8.0. Affected by this vulnerability is an unknown functionality of the component Cookie Handler. The manipulation leads to improper authorization.

This vulnerability is known as CVE-2024-57436. The attack can only be initiated within the local network. There is no exploit available.

CVE-2024-57436 | RuoYi 4.8.0 Cookie improper authorization

Related Posts

CVE-2024-22818 | FlyCMS 1.0 filterKeyword_save cross-site request forgery

CVE-2024-25968 | Dell PowerScale OneFS up to 9.3.0.0/9.4.0.17/9.5.0.7/9.7.0.1/9.7.0.2 risky encryption (dsa-2024-163)

CVE-2023-52386 | Huawei HarmonyOS/EMUI RSMC Module out-of-bounds write

CVE-2024-10390 | Elfsight Telegram Chat CC Plugin up to 1.1.0 on WordPress cross site scripting