Enonic XP Session Fixation Vulnerability

Go back

severity: critical
date: January 19, 2024
Affecting: Enonic XP versions less than 7.7.4
CVE: CVE-2024-23679
CVE type: Session Fixation
CVSS: 7.4
CVSS V3 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
References: Vendor Advisory
Issue Tracking
Related Link
Related Link
Related Link
Third Party Advisory