Security Advisory

CVE-2023-33371

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-08-03 00:00:00

Last updated 2024-10-17 16:46:34

Assigner mitre

State PUBLISHED

Description

Control ID IDSecure 4.7.26.0 and prior uses a hardcoded cryptographic key in order to sign and verify JWT session tokens, allowing attackers to sign arbitrary session tokens and bypass authentication.

← Browse all CVEs View on cve.org ↗