The Web interface of Evolution Controller Versions 2.04.560.31.03.2024 and below uses poor session management, allowing for an unauthenticated attacker to access administrator functionality if any other user is already signed in.
References
Configurations
No configuration.
History
21 Nov 2024, 09:08
Type | Values Removed | Values Added |
---|---|---|
References | () https://directcyber.com.au/sa/CVE-2024-29836-to-29844-evolution-controller-multiple-vulnerabilities.html - |
15 Apr 2024, 13:15
Type | Values Removed | Values Added |
---|---|---|
Summary |
|
15 Apr 2024, 00:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-04-15 00:15
Updated : 2024-11-21 09:08
NVD link : CVE-2024-29837
Mitre link : CVE-2024-29837
CVE.ORG link : CVE-2024-29837
JSON object : View
Products Affected
No product.