Security Advisory

CVE-2024-23679

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-01-19 20:23:03

Last updated 2025-11-29 01:24:39

Assigner VulnCheck

State PUBLISHED

Description

Enonic XP versions less than 7.7.4 are vulnerable to a session fixation issue. An remote and unauthenticated attacker can use prior sessions due to the lack of invalidating session attributes.

← Browse all CVEs View on cve.org ↗