CVE-2024-28134 | Phoenix Contact CHARX SEC-3150 up to 1.5.1 Session Token cleartext transmission (VDE-2024-019)

Posted by Angelo Barbosa | May 14, 2024 | CVE

A vulnerability was found in Phoenix Contact CHARX SEC-3000, CHARX SEC-3050, CHARX SEC-3100 and CHARX SEC-3150 up to 1.5.1. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component Session Token Handler. The manipulation leads to cleartext transmission of sensitive information.

This vulnerability is known as CVE-2024-28134. The attack can be launched remotely. There is no exploit available.

CVE-2024-28134 | Phoenix Contact CHARX SEC-3150 up to 1.5.1 Session Token cleartext transmission (VDE-2024-019)

Related Posts

CVE-2023-48732 | Mattermost up to 8.1.6 Websocket information disclosure

CVE-2024-4840 | Red Hat OpenStack Platform Director log file

CVE-2019-20460 | Epson Expression Home XP255 20.08.FM10I8 POST Request cross-site request forgery

CVE-2024-28675 | DedeCMS 5.7 /dede/diy_edit.php cross-site request forgery