CVE-2024-24552

{"id": "CVE-2024-24552", "metrics": {}, "published": "2024-06-24T07:15:14.903", "references": [{"url": "https://www.redguard.ch/blog/2024/06/20/security-advisory-bludit/", "source": "vulnerability@ncsc.ch"}], "vulnStatus": "Awaiting Analysis", "weaknesses": [{"type": "Secondary", "source": "vulnerability@ncsc.ch", "description": [{"lang": "en", "value": "CWE-384"}]}], "descriptions": [{"lang": "en", "value": "A session fixation vulnerability in Bludit allows an attacker to bypass the server's authentication if they can trick an administrator or any other user into authorizing a session ID of their choosing."}, {"lang": "es", "value": "Una vulnerabilidad de fijaci\u00f3n de sesi\u00f3n en Bludit permite a un atacante eludir la autenticaci\u00f3n del servidor si puede enga\u00f1ar a un administrador o cualquier otro usuario para que autorice una ID de sesi\u00f3n de su elecci\u00f3n."}], "lastModified": "2024-06-24T12:57:36.513", "sourceIdentifier": "vulnerability@ncsc.ch"}