CVE-2024-28134 | Phoenix Contact CHARX SEC-3150 up to 1.5.1 Session Token cleartext transmission (VDE-2024-019)

Posted by Angelo Barbosa | May 14, 2024 | CVE

A vulnerability was found in Phoenix Contact CHARX SEC-3000, CHARX SEC-3050, CHARX SEC-3100 and CHARX SEC-3150 up to 1.5.1. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component Session Token Handler. The manipulation leads to cleartext transmission of sensitive information.

This vulnerability is known as CVE-2024-28134. The attack can be launched remotely. There is no exploit available.

CVE-2024-28134 | Phoenix Contact CHARX SEC-3150 up to 1.5.1 Session Token cleartext transmission (VDE-2024-019)

Related Posts

CVE-2024-0720 | FactoMineR FactoInvestigate up to 1.9 HTML Report Generator cross site scripting

CVE-2024-3642 | Newsletter Popup Plugin up to 1.2 on WordPress cross-site request forgery

CVE-2023-44298 | Dell PowerEdge BIOS 1.4.4 unknown vulnerability (dsa-2023-429)

CVE-2023-4731 | LadiApp Plugin up to 4.4 on WordPress init_endpoint cross-site request forgery