VYPR
Unrated severityNVD Advisory· Published Sep 27, 2024· Updated Sep 27, 2024

Advantech ADAM-5630 Use of Persistent Cookies Containing Sensitive Information

CVE-2024-39275

Description

Cookies of authenticated Advantech ADAM-5630 users remain as active valid cookies when a session is closed. Forging requests with a legitimate cookie, even if the session was terminated, allows an unauthorized attacker to act with the same level of privileges of the legitimate user.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.